The OpenSSL "CVE-2015-1793" certificate verification bug - what you need to know
If you have anything to do with web security, like we do, you've probably been in "bated breath" mode this week.
That's because the OpenSSL team announced, on Monday 2015-07-06, that it had a "high severity" update coming out in three days' time, meaning today, Thursday 2015-07-09:The OpenSSL project team would like to announce the forthcoming release of OpenSSL versions 1.0.2d and 1.0.1p.And that's all she wrote.
These releases will be made available on 9th July. They will fix a single security defect classified as "high" severity. This defect does not affect the 1.0.0 or 0.9.8 releases.
No comments:
Post a Comment