Ever since the major vulnerabilities that were found in OpenSSL, the development pace for this important component has picked up tremendously and we now get updates for it much faster.
“USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the OpenSSL package to properly handle the removal. The ca-certificates package contained outdated CA certificates,” reads the security notice.
For a more detailed description of the problems, you can see Canonical’s securitynotification. Users are advised to upgrade their systems as soon as possible, especially since this is a complicated core component, and it needs a lot of attention.
You can also use the terminal to update the system in case you don’t want the regular channels. Just enter these commands in a terminal near you:
sudo apt-get dist-upgrade
In general, a standard system update will make all the necessary changes. Users will have to reboot the system in order to complete the upgrade process.