OpenSSL Patches Multiple Vulnerabilities

Original release date: December 03, 2015

OpenSSL has released updates patching four vulnerabilities. Exploitation of one of these vulnerabilities could allow an attacker to cause a cause a Denial of Service condition. Updates available include:

  • OpenSSL 1.0.2e for 1.0.2 users
  • OpenSSL 1.0.1q for 1.0.1 users
  • OpenSSL 1.0.0t for 1.0.0 users
  • OpenSSL 0.9.8zh for 0.9.8 users

Users and administrators are encouraged to review the OpenSSL Security Advisory and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.

Source: US-CERT