March 26, 2015 Leave a comment
The OpenSSL Project has released fixes to address a dozen flaws in the open source cryptographic protocol implementation (OpenSSL Security Advisory). One of the vulnerabilities has been classified as high severity; it could be exploited to cause denial-of-service (DoS) conditions.
Users should update, however it’s nowhere near serious as Heartbleed was.
Who this affects: clients that connect to an OpenSSL 1.0.2 server. Earlier versions of OpenSSL are not affected.