Re: Re: Heartbleed bug, update openssl package?

Home Page Forums Network Management ZeroShell Heartbleed bug, update openssl package? Re: Re: Heartbleed bug, update openssl package?

#53272

tls
Member

@flashengineer wrote:

Hi, is it possible we get the newer openssl to avoid heartbleed bug?

I answered my own reply when I read more about the issue. Currently the version of OpenSSL on 3.0 and 2.0RC3 is “OpenSSL 0.9.8u 12 Mar 2012”.

According to the CVE and other docs 0.9.8 is not effected, so no update is needed. Though it would be nice to update to current version to nail other issues, but this issue does not have an affect on ZS

–tls