Last Updated: 2015-06-12 02:34:48 UTC
by Brad Duncan (Version: 1)
An OpenSSL security advisory issued earlier today on Thursday 2015-06-11 . According to the advisory users should upgrade OpenSSL to fix vulnerabliities that could be exploited by a Logjam attack .
The issue affects all current OpenSSL versions: 1.0.2, 1.0.1, 1.0.0 and 0.9.8.
- OpenSSL 1.0.2 users should upgrade to 1.0.2b
- OpenSSL 1.0.1 users should upgrade to 1.0.1n
- OpenSSL 1.0.0 users should upgrade to 1.0.0s
- OpenSSL 0.9.8 users should upgrade to 0.9.8zg
Related vulnerabilities from the announcement:
Of note, support for OpenSSL versions 1.0.0 and 0.9.8 will cease at the end of the year on 2015-12-31. No security updates for 1.0.0 and 0.9.8 will be provided after that. Users are advised to upgrade to the latest versions of 1.0.1 or 1.0.2.