OpenSSL major bugfix Thur 19th March - Heartbleed 2.0?

Mouth

Well-known member
For those using https on your site(s), in case you've not already seen it in your news feeds, the OpenSSL team will today/tomorrow (depending upon your timezone) release a major bugfix for OpenSSL.

Refer: http://marc.info/?l=openssl-announce&m=142653572011212&w=2 for announcement and https://krebsonsecurity.com/2015/03/openssl-patch-to-plug-severe-security-holes/ for reporting.

Be alert/aware of your OS distributions upcoming security releases, and/or prep your tech consultants or hosting companies to patch/upgrade your systems.
 
Last edited:

Sheratan

Well-known member
yum update in more than 5 CentOS 6 + cPanel server and had no upgrade packages.

Finger crossed.
 

Moscato

Active member
yum update in more than 5 CentOS 6 + cPanel server and had no upgrade packages.

Finger crossed.
Apparently redhat considered this a low priority and it got upgraded higher today according to my friend who bugged them in IRC
 
Top