CVE-2024-4741
Publication date 28 May 2024
Last updated 31 July 2024
Ubuntu priority
Use After Free with SSL_free_buffers
Read the notes from the security team
Why is this CVE low priority?
Upstream OpenSSL developers have rated this as being a low severity issue
Status
Package | Ubuntu Release | Status |
---|---|---|
edk2 | 24.04 LTS noble |
Vulnerable
|
22.04 LTS jammy |
Vulnerable
|
|
20.04 LTS focal |
Vulnerable
|
|
18.04 LTS bionic |
Needs evaluation
|
|
16.04 LTS xenial |
Needs evaluation
|
|
nodejs | 24.04 LTS noble |
Not affected
|
22.04 LTS jammy |
Vulnerable
|
|
20.04 LTS focal |
Not affected
|
|
18.04 LTS bionic |
Needs evaluation
|
|
16.04 LTS xenial |
Needs evaluation
|
|
14.04 LTS trusty |
Not affected
|
|
openssl | 24.04 LTS noble |
Fixed 3.0.13-0ubuntu3.2
|
22.04 LTS jammy |
Fixed 3.0.2-0ubuntu1.17
|
|
20.04 LTS focal |
Fixed 1.1.1f-1ubuntu2.23
|
|
18.04 LTS bionic |
Needs evaluation
|
|
16.04 LTS xenial |
Needs evaluation
|
|
14.04 LTS trusty |
Needs evaluation
|
|
openssl1.0 | 24.04 LTS noble | Not in release |
22.04 LTS jammy | Not in release | |
20.04 LTS focal | Not in release | |
18.04 LTS bionic |
Not affected
|
Notes
References
Related Ubuntu Security Notices (USN)
- USN-6937-1
- OpenSSL vulnerabilities
- 31 July 2024