Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
Alert

OpenSSL Patches Multiple Vulnerabilities

Last Revised

OpenSSL has released updates patching four vulnerabilities. Exploitation of one of these vulnerabilities could allow an attacker to cause a denial-of-service condition. Updates available include:

  • OpenSSL 1.0.2e for 1.0.2 users
  • OpenSSL 1.0.1q for 1.0.1 users
  • OpenSSL 1.0.0t for 1.0.0 users
  • OpenSSL 0.9.8zh for 0.9.8 users

Users and administrators are encouraged to review the OpenSSL Security Advisory and apply the necessary updates.