I'm new to how Debian tracks this, so this is probably a simple question. This says that CVE-2022-2068 is fixed in openssl 1.1.1n-0+deb11u3:
But openssl says that is fixed in openssl 1.1.1p (Affected 1.1.1-1.1.1o):
Does Debian back-port some of these fixes?
Thanks!
Mark