OpenSSL Releases Security Advisory

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

OpenSSL versions 1.0.2f and 1.0.1r have been released to address vulnerabilities in prior versions. Exploitation of these vulnerabilities may allow a remote attacker to obtain sensitive information.

US-CERT encourages users and administrators to review the OpenSSL Security Advisory and apply the necessary update. For more information, please see Vulnerability Note VU#257823.

This product is provided subject to this Notification and this Privacy & Use policy.

OpenSSL Releases Security Advisory

Please share your thoughts

CISA Releases Two Industrial Control Systems Advisories

CISA Releases Three Industrial Control Systems Advisories

CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate Directory Traversal Vulnerabilities

CISA and Partners Release Fact Sheet on Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

OpenSSL Releases Security Advisory

Please share your thoughts

Related Advisories

CISA Releases Two Industrial Control Systems Advisories

CISA Releases Three Industrial Control Systems Advisories

CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate Directory Traversal Vulnerabilities

CISA and Partners Release Fact Sheet on Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity