SECURITY

USN-5056-1: APR vulnerability It was discovered that APR incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. Source: USN-5056-1: APR vulnerability

USN-5055-1: GNOME grilo vulnerability Michael Catanzaro discovered that grilo incorrectly handled certain TLS certificate verification. An attacker could possibly use this issue to MITM attacks. Source: USN-5055-1: GNOME grilo vulnerability

USN-5053-1: libssh vulnerability It was discovered that libssh incorrectly handled rekeying. A remote attacker could use this issue to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5053-1: libssh vulnerability

USN-5051-3: OpenSSL vulnerability USN-5051-1 fixed a vulnerability in OpenSSL. This update provides the corresponding update for the openssl1.0 package in Ubuntu 18.04 LTS. Original advisory details: Ingo Schwarze discovered that OpenSSL incorrectly handled certain ASN.1 strings. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2021-3712) Source: USN-5051-3: OpenSSL vulnerability

USN-5051-2: OpenSSL vulnerability USN-5051-1 fixed a vulnerability in OpenSSL. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Ingo Schwarze discovered that OpenSSL incorrectly handled certain ASN.1 strings. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2021-3712) Source: USN-5051-2: OpenSSL vulnerability