Patch openssl crates against CVE-2025-24898

[cr-tk]

Summary & Motivation (Problem vs. Solution)

Adopt new openssl crate versions to patch CVE-2025-24898.

From what I can tell, we're not directly making use of the affected ssl::select_next_proto, but one of the dependencies in qos_enclave may do so. Switch to a patched version to be on the safe side.

How I Tested These Changes

Needs regression testing.

Pre merge check list

• Update CHANGELOG.MD

[cr-tk]

I performed a differential code review of the changed crates:

"openssl","0.10.66","0.10.66","0.10.70","0.10.66->0.10.70","review diff","",""
"openssl-sys","0.9.103","0.9.104","0.9.105","0.9.104->0.9.105","review diff","",""

With openssl-sys, we already trust 0.9.104 and therefore the diff was 0.9.104->0.9.105. See internal documentation (not linked here) for more details.

The crate changes look good and I approve of them from a dependency reviewer standpoint.