Just two months after the Heartbleed Bug scare, the open-source group for OpenSSL today warned of a new set of vulnerabilities discovered in the protocol that could let an attacker carry out ...

The OpenSSL project has reported fixes for several vulnerabilities, at least one of them serious. The most significant vulnerability is SSL/TLS MITM vulnerability (CVE-2014-0224). Unlike Heartbleed, ...

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. According to our report on the discovery of a significant ...

The entire IT world is in the process of devising strategies to handle Heartbleed bug, an OpenSSL vulnerability, amidst several warnings from governments, enterprises and IT experts.

New security holes are always showing up. The latest one, the so-called Heartbleed Bug in the OpenSSL cryptographic library, is an especially bad one. While Heartbleed only affects OpenSSL's 1.0.1 and ...

Server administrators are advised to upgrade OpenSSL again to fix eight new vulnerabilities, two of which can lead to denial-of-service (DoS) attacks. The flaws are only of moderate and low severity, ...

Websites and companies that rely on OpenSSL should patch their systems as soon as possible. The developer of Open SSL, a widely used open-source encryption library, released Tuesday a patch to fix ...

The maintainers of the OpenSSL library, one of the more widely deployed cryptographic libraries on the Web, have fixed a serious vulnerability that could have resulted in the revelation of 64 KB ...

OpenSSL announced that it will release updates for 1.0.2f and 1.0.1r that patch two high-severity vulnerabilities. OpenSSL is scheduled to update two versions of the software this week, patching a ...

Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component. The warning comes from the OpenSSL ...

The team behind the widely used open source cryptographic library OpenSSL has patched two vulnerabilities in the service that it had previously taken the somewhat unusual step of pre-warning security ...