The OpenSSL Project has announced several vulnerabilities in the library which will be patched on Thursday, March 19, 2015. The announcement was made by OpenSSL's Matt Caswell. Caswell states that the patches will fix a number of security defects and the highest severity fixed by these releases is classified as "high" severity. The patches will address vulnerabilities in OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r, and 0.9.8zf. Symantec will have more information shortly after the releases.
↧