CVE-2009-3245 not fixed for 8.04LTS

Asked by rfoster55 on 2010-10-06

When trying to make our server PCI compliant I found that the latest openssl package 0.9.8g-4ubuntu3.9 hasn't been updated to address CVE-2009-3245. This is surprising since it has been fixed and released in Debian stable so I wonder if this is just an oversight here. Can we get these changes into the 8.04LTS openssl package? Thanks.

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu openssl Edit question
Assignee:
No assignee Edit question
Solved by:
actionparsnip
Solved:
2010-10-06
Last query:
2010-10-06
Last reply:
2010-10-06

Log a bug, it should get added faster. You could find a ppa with the latest version
https://launchpad.net/ubuntu/+ppas

rfoster55 (rfoster55) said : #2

Okay, I logged a bug. No ppa for 8.04 on this one yet. Thanks.