CERT mailing list archives

Previous By Date Next
Previous By Thread Next

OpenSSL Patches Multiple Vulnerabilities

From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Thu, 19 Mar 2015 13:41:23 -0500
NCCIC / US-CERT

National Cyber Awareness System:

OpenSSL Patches Multiple Vulnerabilities [ 
https://www.us-cert.gov/ncas/current-activity/2015/03/19/OpenSSL-Patches-Multiple-Vulnerabilities ] 03/19/2015 12:50 PM 
EDT 
Original release date: March 19, 2015

OpenSSL has released new updates addressing multiple vulnerabilities, one of which is classified as a high severity 
issue. Exploitation could allow a remote attacker to cause a cause a Denial of Service attack against the server.

Updates available include:


  * OpenSSL 1.0.2a for 1.0.2 users 
  * OpenSSL 1.0.1m for 1.0.1 users 
  * OpenSSL 1.0.0r for 1.0.0 users 
  * OpenSSL 0.9.8zf for 0.9.8 users 

Users and administrators are encouraged to review the OpenSSL Security Advisory [ 
http://openssl.org/news/secadv_20150319.txt ] and apply the necessary updates [ http://www.openssl.org/news/ ].

________________________________________________________________________

This product is provided subject to this Notification [ http://www.us-cert.gov/privacy/notification ] and this Privacy 
& Use [ http://www.us-cert.gov/privacy/ ] policy.

________________________________________________________________________

OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ 
http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ 
http://www.us-cert.gov/related-resources ] 

STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Previous By Date Next
Previous By Thread Next

Current thread: