OpenSSL has released a Security Advisory and released an update that will patch nine vulnerabilities. These include issues that would allow an attacker to cause a Denial of Service (DoS) or force the client to revert to a less secure Transport Layer Security (TLS) 1.0 Protocol. The following updates are available from OpenSSL:
- OpenSSL 0.9.8 users should upgrade to 0.9.8zb
- OpenSSL 1.0.0 users should upgrade to 1.0.0n
- OpenSSL 1.0.1 users should upgrade to 1.0.1i
You can view the OpenSSL Security Advisory for further information.