openssl

High-severity flaw found in OpenSSL

High-severity flaw found in OpenSSL

Users with version 1.1.0 advised to upgrade.
Feb 17 2017 6:30AM
OpenSSL security patches created critical vulnerability

OpenSSL security patches created critical vulnerability

Fix for low severity issue turns problematic.
Sep 27 2016 4:38AM
OpenSSL patches high-severity vulnerability

OpenSSL patches high-severity vulnerability

Could be abused for denial-of-service attacks.
Sep 23 2016 7:00AM
Stemming Heartbleed with the human element

Stemming Heartbleed with the human element

How OpenSSL pulled back from the brink.
May 27 2016 9:40AM
OpenSSL users urged to patch high-severity holes

OpenSSL users urged to patch high-severity holes

Could be used for MitM attacks, remote code execution.
May 4 2016 9:28AM
Major Australian banks vulnerable to DROWN SSLv2 flaw

Major Australian banks vulnerable to DROWN SSLv2 flaw

Disable SSLv2 everywhere to prevent decryption of communications.
Mar 2 2016 4:56AM
OpenSSL fixes high-severity key recovery hole

OpenSSL fixes high-severity key recovery hole

Further hardening against "Logjam" attack included in update.
Jan 29 2016 9:25AM
Microsoft debuts first home-brewed OpenSSH release

Microsoft debuts first home-brewed OpenSSH release

Will use native Windows crypto APIs eventually.
Oct 20 2015 11:26AM
'High severity' flaw discovered in OpenSSL

'High severity' flaw discovered in OpenSSL

Certificate bypass check possible.
Jul 10 2015 6:13AM
OpenSSL patches Logjam vulnerability

OpenSSL patches Logjam vulnerability

Users advised to upgrade.
Jun 12 2015 6:21AM
OpenSSL patches denial of service vulnerabilities

OpenSSL patches denial of service vulnerabilities

FREAK bug reclassified as high severity.
Mar 20 2015 6:35AM
OpenSSL update targets eight vulnerabilities

OpenSSL update targets eight vulnerabilities

Analysts recommend upgrading 'within days'.
Jan 9 2015 9:51AM
Let's do the Heartbleed... again

Let's do the Heartbleed... again

[Blog post] Eight months on and many systems remain unpatched.
Dec 2 2014 2:45PM
OpenSSL plugs high severity vulnerability

OpenSSL plugs high severity vulnerability

0.9.8 end-of-life countdown starts.
Oct 16 2014 5:19AM
OpenSSL patches nine security flaws

OpenSSL patches nine security flaws

Code security audits kicking in.
Aug 7 2014 5:35PM
Popular Android apps inherit bugs from recycled code

Popular Android apps inherit bugs from recycled code

Study reveals security concerns in top 50 list.
Jul 28 2014 11:46AM
Vendors slow to patch OpenSSL vulnerabilities

Vendors slow to patch OpenSSL vulnerabilities

Heartbleed is far from over.
Jun 30 2014 6:19AM
Google forks OpenSSL into BoringSSL

Google forks OpenSSL into BoringSSL

Will continue to fund Core Infrastructure Initiative.
Jun 23 2014 5:00AM
OpenSSL flaws delay OnePlus One CyanogenMod phone

OpenSSL flaws delay OnePlus One CyanogenMod phone

New firmware needed.
Jun 12 2014 6:16AM
What’s worse than Heartbleed? Your core IT

What’s worse than Heartbleed? Your core IT

[Blog Post] Living with danger.
Jun 10 2014 11:12AM

Log In

Username / Email:
Password:
  |  Forgot your password?