14 DAY TRIAL // Canonical has revealed details about an OpenSSL feature that has been disabled in Ubuntu 15.04, Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS operating systems.
An OpenSSL feature has been disabled in OpenSSL, but it's not for something that severe as to receive a name. When users see OpenSSL in a sentence, they immediately think of Heartbleed, but this is far from it. In reality, this is just a feature that has been removed from the package.
"As a security improvement, this update removes the export cipher suites from the default cipher list to prevent their use in possible downgrade attacks," is noted in the security notice.
For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems as soon as possible.
The package can be updated if you upgrade your system to the latest libssl1.0.0 package specific to each distribution. To apply the patch, users will have to run the Update Manager application. In general, a standard system update will make all the necessary changes, and there is no need for a restart.
You can also use the terminal and enter the following commands (you will need to be root and you will need Internet access):
sudo apt-get dist-upgrade