More
livechat

Loading

OpenSSL Patches Security Vulnerabilities

OpenSSL Patches Security Vulnerabilities

09-01-2015 12:28:49

OpenSSL released four patches for new security vulnerabilities found in OpenSSL versions 1.0.1 and 0.9.8. These patches fix a total of eight vulnerabilities, two of which are rated moderate and the others are considered low risk.

Both of the moderate vulnerabilities affect DTLS users and could lead to a Denial of Service attack. In the first vulnerability, sends a crafted DTLS message will cause a segmentation faul. In the second a memory leak can occur in the dtls1_buffer_record function .

The rest of the vulnerabilities are rated as a low risk.

What should you do?

OpenSSL users should patch their systems, particularly systems using DTLS. Source code is available for the OpenSSL patches you find here https://www.openssl.org/source/

Recent Posts

GDPR and SSL certificate. Is encryption necessary for compliance with the GDPR?
18-05-2018 15:47:40

General Data Protection Regulation (GDPR) is a 99-article regulation meant to protect the private data of Europeans in IT systems. Announced in 2016, covers a broad variety of topics and will go into effect as a requirement on May 25, 2018. GDPR applies to any company doing business in Europe even if it is located elsewhere.

GDPR and SSL certificate. Is encryption necessary for compliance with the GDPR?
Deadlines for replacing Symantec Group certificates
08-12-2017 14:11:50

In November this year we wrote about the need to replace SSL certificates issued by Symantec Group. Find out the dates when you need to re-issue your certificates.

Deadlines for replacing Symantec Group certificates
CA Comodo sold to Francisco Partners
07-12-2017 11:21:38

The majority of Comodo Certification Authority (CA) shares were sold to Francisco Partners for an undisclosed amount.

CA Comodo sold to Francisco Partners
more posts