Brace for Impact -- New OpenSSL Severe Security Advisory to Be Released Tomorrow Sept 19th

The OpenSSL team has released a statement that all versions of OpenSSL will receive an update tomorrow to patch an as-of-yet undisclosed vulnerability in OpenSSL.

The announcement here https://mta.openssl.org/pipermail/openssl-users/2015-March/000778.html
states that the new versions 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf will fix a vulnerability that has a "high" severity rating.

As of this writing the vulnerability is undisclosed. We will be keeping an eye out for the release and be ready to implement countermeasures once the threat is known. VikingVPN is always committed to being the most secure VPN in the market, and we implement fixes and countermeasures against all known threats in the wild. We also implement a strong threat model to keep our systems safe from unknown threats, which has shielded us and our users against the last few major vulnerabilities in OpenSSL and OpenVPN alike.

There are currently no entries in the NVD or a CVE for this new threat.

< last
next >