[Bug 1980007] Re: can't tell which version of openssl is used

[Simon Chopin]

Hi,

The base version of OpenSSL in Bionic is 1.1.1 (no letter). OpenSSL is
notoriously difficult to understand, although things should be much
easier from 3.0.0 forward.

However, the package has been patched several times to backport security
patches as well as fixes for other issues. You can see the detail in
/usr/share/doc/libssl1.1/changelog.Debian.gz. In this file for instance,
you'll find the following entry:

openssl (1.1.1-1ubuntu2.1~18.04.14) bionic; urgency=medium

  * Cherry-pick upstream fixes to prevent double engine loading (LP:
#1951943)

 -- Julian Andres Klode <juliank at ubuntu.com>  Wed, 24 Nov 2021 14:50:16
+0100

which indicates that the bug you mentioned should be fixed in your
version.

Closing this as Invalid, as this technically isn't a bug :)


** Changed in: openssl (Ubuntu)
       Status: Confirmed => Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1980007

Title:
  can't tell which version of openssl is used

Status in openssl package in Ubuntu:
  Invalid

Bug description:
  I am using 1.1.1-1ubuntu2.1~18.04.19 package version on 18.04.

  The openssl CHANGES file includes this text:

  ```
  Changes between 1.1.1l and 1.1.1m [14 Dec 2021]

    *) Avoid loading of a dynamic engine twice.

       [Bernd Edlinger]
  ```

  I tried to search the ubuntu changelog by searching
  packages.ubuntu.com and clicking the changelog link there and reading:
  http://changelogs.ubuntu.com/changelogs/pool/main/o/openssl/openssl_1.1.1-1ubuntu2.1~18.04.19/changelog

  But there is no mention of which 1.1.1 letter version is used and
  there is no mention of dynamic engine, so I cannot be sure that the
  change I am interested in is included.

  How can I tell?

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1980007/+subscriptions