The OpenSSL project has reported fixes for several vulnerabilities, at least one of them serious. The most significant vulnerability is SSL/TLS MITM vulnerability (CVE-2014-0224). Unlike Heartbleed, ...

New security holes are always showing up. The latest one, the so-called Heartbleed Bug in the OpenSSL cryptographic library, is an especially bad one. While Heartbleed only affects OpenSSL's 1.0.1 and ...

Websites and companies that rely on OpenSSL should patch their systems as soon as possible. The developer of Open SSL, a widely used open-source encryption library, released Tuesday a patch to fix two ...

The maintainers of the OpenSSL library, one of the more widely deployed cryptographic libraries on the Web, have fixed a serious vulnerability that could have resulted in the revelation of 64 KB of ...

CRN provides the latest on the Heartbleed bug, providing news and analysis related to the OpenSSL vulnerability. Earlier this month a vulnerability was discovered in OpenSSL, exposing many websites ...

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. According to our report on the discovery of a significant ...

The two vulnerabilities in OpenSSL 3.0 are now rated as high rather than critical severity after further testing. The OpenSSL project released a patch for two high severity vulnerabilities in the ...

The San Jose, Calif.-based networking giant said the OpenSSL vulnerabilities affect Cisco IPS, Secure ACS, Security Agent, MARS, Unified Presence Server, SIP Proxy Server, Wireless LAN Controller and ...

An international team of researchers has uncovered an attack that can compromise encrypted network traffic in a matter of hours. The DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) attack ...

The team behind the widely used open source cryptographic library OpenSSL has patched two vulnerabilities in the service that it had previously taken the somewhat unusual step of pre-warning security ...

Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component. The warning comes from the OpenSSL ...

MILPITAS, Calif.--(BUSINESS WIRE)--Array Networks Inc., a global leader in application delivery networking, announces today Array Networks products are NOT exposed to the DROWN vulnerability. Unlike ...