Three vulnerabilities have been patched in OpenSSL, including one that allows an attacker to recover the private key.

Just two months after the Heartbleed Bug scare, the open-source group for OpenSSL today warned of a new set of vulnerabilities discovered in the protocol that could let an attacker carry out ...

The OpenSSL project has reported fixes for several vulnerabilities, at least one of them serious. The most significant vulnerability is SSL/TLS MITM vulnerability (CVE-2014-0224). Unlike Heartbleed, ...

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. According to our report on the discovery of a significant ...

The OpenSSL library is deployed in a huge number of operating systems and applications, including a wide variety of Unix and Linux distributions, as well as OS X. Popular Web servers such as Nginx and ...

New security holes are always showing up. The latest one, the so-called Heartbleed Bug in the OpenSSL cryptographic library, is an especially bad one. While Heartbleed only affects OpenSSL's 1.0.1 and ...

Websites and companies that rely on OpenSSL should patch their systems as soon as possible. The developer of Open SSL, a widely used open-source encryption library, released Tuesday a patch to fix two ...

Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component. The warning comes from the OpenSSL ...

The team behind the widely used open source cryptographic library OpenSSL has patched two vulnerabilities in the service that it had previously taken the somewhat unusual step of pre-warning security ...

A newly disclosed remote execution flaw involving Secure Sockets Layer encryption puts tens of thousands of Web-facing servers at risk of being taken over by attackers, according to Internet ...

The OpenSSL Project has patched two high-severity security flaws in its open-source cryptographic library used to encrypt communication channels and HTTPS connections. The vulnerabilities ...

The OpenSSL project team has patched two vulnerabilities in the cryptographic library and enhanced the strength of existing cryptography used by OpenSSL versions 1.0.1 and 1.0.2. OpenSSL 1.0.2 users ...