[openssl-users] [openssl-dev] OpenSSL Security Advisory

Viktor Dukhovni openssl-users at dukhovni.org
Thu Jul 9 14:02:55 UTC 2015

On Thu, Jul 09, 2015 at 01:13:30PM +0000, Salz, Rich wrote:

> > This issue affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.
> In other words, if you are not using those specific releases -- i.e., the
> ones that came out less than 30 days ago -- you do not need to upgrade.

More accurately, you should upgrade anyway, to address the issues
resolved by those earlier releases, even though the specific issue
in the most recent release applies only to its immediate predecessors.


More information about the openssl-users mailing list