+91 88 00 563434sales@webhostingpeople.net Blogopen-book Knowledge Base
What can we help you with?
Table of Contents
< All Topics
Print

OpenSSL Security Vulnerability

UpdatedJanuary 6, 2019
Views0

A recent OpenSSL security vulnerability has come to light. It is strongly recommended that servers running the vulnerable versions of OpenSSL (1.0.1 and 1.0.2beta) be promptly updated.

For more information, refer to the official advisory: OpenSSL Security Advisory [07 Apr 2014]

TLS heartbeat read overrun (CVE-2014-0160)
==========================================

A missing bounds check in the handling of the TLS heartbeat extension can be
used to reveal up to 64KB of memory to a connected client or server.

Only 1.0.1 and 1.0.2-beta releases of OpenSSL are affected, including
1.0.1f and 1.0.2-beta1.

Thanks to Neel Mehta of Google Security for finding this bug and to
Adam Langley <agl@chromium.org> and Bodo Moeller <bmoeller@acm.org> for
preparing the fix.

Affected users should upgrade to OpenSSL 1.0.1g. Users unable to immediately
upgrade can alternatively recompile OpenSSL with -DOPENSSL_NO_HEARTBEATS.

1.0.2 is also fixed in 1.0.2-beta2.

 

Tags:

Leave a Comment

Categories
WebHostingPeople

WebHostingPeople, founded in 2001, offers top-tier web hosting solutions for businesses and individuals. We are dedicated to delivering unmatched speed, security, and 24/7 support. Our innovative team ensures your website remains reliable and accessible.

Contact Us

Subscribe to our
Newsletter!

    Get In Touch

    Greater Noida, India

    +91 88 00 56 3434

    WhatsApp Live Chat

    sales@webhostingpeople.net

    Trustpilot

    Domains

    New Register

    Transfer to Us!

    Domain Pricing

    WHOIS Lookup

    shared hosting

    Unlimited Cloud Hosting

    Business Hosting

    Professional Email Hosting

    Managed WordPress Hosting

    reseller hosting

    cPanel Reseller Hosting

    Direct Admin Reseller Hosting

    Unlimited Reseller Hosting

    Cloud VPS Hosting

    Unlimited Cloud VPS Hosting

    Managed Cloud VPS Hosting

    Unmanaged Cloud VPS Hosting

    Dedicated servers

    Rapid Deploy Dedicated Servers

    Bare Metal Dedicated Servers

    Managed Dedicated Servers

    Helpdesk

    Client Area Login

    Forgot Password

    Company Blog

    Knowledge Base

    MSME

    GSTIN: 09AGTPM1596Q1Z6

    We Accept:
    Payment Method

    © Copyright 2024 WebHostingPeople. All rights reserved.

    Privacy Policy
    Terms of Service
    WebHostingPeople
    Powered by  GDPR Cookie Compliance
    Privacy Overview

    This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.