openssl – Weekly Geek

OpenSSL 3 patch, once Heartbleed-level “critical,” arrives as a lesser “high”

Enlarge / The fallout of an OpenSSL vulnerability, initially listed as “critical,” should be much less severe than that of the last critical OpenSSL bug, Heartbleed. reader comments 19 with 17 posters participating Share this story An OpenSSL vulnerability once signaled as the first critical-level patch since the Internet-reshaping Heartbleed bug has just been patched.… Read More »

OpenSSL fixes high-severity flaw that allows hackers to crash servers

Enlarge (credit: Getty Images) OpenSSL, the most widely used software library for implementing website and email encryption, has patched a high-severity vulnerability that makes it easy for hackers to completely shut down huge numbers of servers. OpenSSL provides time-tested cryptographic functions that implement the Transport Layer Security protocol, the successor to Secure Sockets Layer that… Read More »