ELA-807-1 openssl security update

multiple vulnerabilities

2023-02-22
Packageopenssl
Version1.0.1t-1+deb8u20 (jessie), 1.1.0l-1~deb9u8 (stretch)
Related CVEs CVE-2023-0215 CVE-2023-0286


Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit, which may result in denial of service or information disclosure.

Additional details can be found in the upstream advisory.



For Debian 8 jessie, these problems have been fixed in version 1.0.1t-1+deb8u20.

For Debian 9 stretch, these problems have been fixed in version 1.1.0l-1~deb9u8.

We recommend that you upgrade your openssl packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.