OpenSSL patches a severe but not widespread problem
The OpenSSL project has patched a problem in the cryptographic library but one that likely does not affect many popular applications.
The OpenSSL project has patched a problem in the cryptographic library but one that likely does not affect many popular applications.
A flaw in the widely used OpenSSL library could allow man-in-the-middle attackers to impersonate HTTPS servers and snoop on encrypted traffic. Most browsers are not affected, but other applications and embedded devices could be.
Server admins and developers beware: The OpenSSL Project plans to release security updates Thursday for its widely used cryptographic library that will fix a high severity vulnerability.
The mystery high-severity flaw that people were expected to be fixed in OpenSSL is no Heartbleed, but it is serious and users should update.
Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component.