{"id":"USN-2913-3","summary":"openssl update","details":"USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates\npackage. This update adds support for alternate certificate chains to the\nOpenSSL package to properly handle the removal.\n\nOriginal advisory details:\n\n The ca-certificates package contained outdated CA certificates. This update\n refreshes the included certificates to those contained in the 20160104\n package, including the removal of the SPI CA and CA certificates with\n 1024-bit RSA keys.\n","modified":"2026-04-22T09:22:04.822163Z","published":"2016-02-24T17:27:37Z","references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2913-3"},{"type":"REPORT","url":"https://launchpad.net/bugs/1528645"}],"affected":[{"package":{"name":"openssl","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/openssl@1.0.1f-1ubuntu2.17?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.1f-1ubuntu2.17"}]}],"versions":["1.0.1e-3ubuntu1","1.0.1e-4ubuntu1","1.0.1e-4ubuntu2","1.0.1e-4ubuntu3","1.0.1e-4ubuntu4","1.0.1f-1ubuntu1","1.0.1f-1ubuntu2","1.0.1f-1ubuntu2.1","1.0.1f-1ubuntu2.2","1.0.1f-1ubuntu2.3","1.0.1f-1ubuntu2.4","1.0.1f-1ubuntu2.5","1.0.1f-1ubuntu2.7","1.0.1f-1ubuntu2.8","1.0.1f-1ubuntu2.11","1.0.1f-1ubuntu2.12","1.0.1f-1ubuntu2.15","1.0.1f-1ubuntu2.16"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1.0.1f-1ubuntu2.17","binary_name":"libssl1.0.0"},{"binary_version":"1.0.1f-1ubuntu2.17","binary_name":"openssl"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2913-3.json","cves_map":{"cves":[],"ecosystem":"Ubuntu:14.04:LTS"}}}],"schema_version":"1.7.5"}