openssl

Dell patches virtual storage software against OpenSSL, Apache bugs

Dell patches virtual storage software against OpenSSL, Apache bugs

Text4Shell among the bug-fixes.
Richard Chirgwin Nov 25 2022 11:54AM Security
Cisco's patch day plugs six vulnerabilities

Cisco's patch day plugs six vulnerabilities

Network giant also launched OpenSSL 3.x investigation.
Richard Chirgwin Nov 3 2022 11:49AM Security
OpenSSL downgrades email address bug from critical to high

OpenSSL downgrades email address bug from critical to high

Vulnerabilities introduced with punycode functionality in X.509 certificates.
Juha Saarinen Nov 2 2022 6:50AM Security
Mitsubishi manufacturing controller software inherited OpenSSL bugs

Mitsubishi manufacturing controller software inherited OpenSSL bugs

CISA warns about remote code execution, DoS exploits.
Richard Chirgwin Aug 10 2022 11:32AM Security
OpenSSL fixes remote code execution bug

OpenSSL fixes remote code execution bug

Affects X86_64 processors.
Juha Saarinen Jul 6 2022 6:44AM Security
OpenSSL subject to remote memory corruption

OpenSSL subject to remote memory corruption

Researcher discovery sparks vulnerability controversy.
Richard Chirgwin Jun 28 2022 11:46AM Security
OpenSSL squarely rooted by cert parsing bug

OpenSSL squarely rooted by cert parsing bug

LibreSSL issues patches as well.
Juha Saarinen Mar 16 2022 11:53AM Security
High-severity flaw found in OpenSSL

High-severity flaw found in OpenSSL

Users with version 1.1.0 advised to upgrade.
Juha Saarinen Feb 17 2017 6:30AM Security
OpenSSL security patches created critical vulnerability

OpenSSL security patches created critical vulnerability

Fix for low severity issue turns problematic.
Juha Saarinen Sep 27 2016 4:38AM Security
OpenSSL patches high-severity vulnerability

OpenSSL patches high-severity vulnerability

Could be abused for denial-of-service attacks.
Juha Saarinen Sep 23 2016 7:00AM Security
Stemming Heartbleed with the human element

Stemming Heartbleed with the human element

How OpenSSL pulled back from the brink.
Juha Saarinen May 27 2016 9:40AM Security
OpenSSL users urged to patch high-severity holes

OpenSSL users urged to patch high-severity holes

Could be used for MitM attacks, remote code execution.
Juha Saarinen May 4 2016 9:28AM Security
Major Australian banks vulnerable to DROWN SSLv2 flaw

Major Australian banks vulnerable to DROWN SSLv2 flaw

Disable SSLv2 everywhere to prevent decryption of communications.
Juha Saarinen Mar 2 2016 4:56AM Security
OpenSSL fixes high-severity key recovery hole

OpenSSL fixes high-severity key recovery hole

Further hardening against "Logjam" attack included in update.
Juha Saarinen Jan 29 2016 9:25AM Security
Microsoft debuts first home-brewed OpenSSH release

Microsoft debuts first home-brewed OpenSSH release

Will use native Windows crypto APIs eventually.
Juha Saarinen Oct 20 2015 11:26AM Security
'High severity' flaw discovered in OpenSSL

'High severity' flaw discovered in OpenSSL

Certificate bypass check possible.
Juha Saarinen Jul 10 2015 6:13AM Security
OpenSSL patches Logjam vulnerability

OpenSSL patches Logjam vulnerability

Users advised to upgrade.
Juha Saarinen Jun 12 2015 6:21AM Security
OpenSSL patches denial of service vulnerabilities

OpenSSL patches denial of service vulnerabilities

FREAK bug reclassified as high severity.
Juha Saarinen Mar 20 2015 6:35AM Security
OpenSSL update targets eight vulnerabilities

OpenSSL update targets eight vulnerabilities

Analysts recommend upgrading 'within days'.
Adam Greenberg Jan 9 2015 9:51AM Security
Let's do the Heartbleed... again

Let's do the Heartbleed... again

[Blog post] Eight months on and many systems remain unpatched.
Juha Saarinen Dec 2 2014 2:45PM Security

Log In

  |  Forgot your password?