SecurityWeek

High-Severity Remote Code Execution Vulnerability Patched in OpenSSL

OpenSSL updates released on Tuesday patch a dozen vulnerabilities, including a high-severity remote code execution flaw.

12 OpenSSL bugs survived since the 90s until AI finally showed up

Decades-old OpenSSL flaws surfaced through autonomous code analysis – showing how AI can detect crashes, corruption, and cryptographic errors earlier.

OpenSSL: 12 security gaps, one allows malicious code execution and is critical

IT researchers have discovered 12 security vulnerabilities in the open-source encryption library OpenSSL, one of which is ...

AISLE Researchers Identify 12 New Security Vulnerabilities in OpenSSL Using AI-Driven Discovery

The vulnerabilities disclosed in this release span multiple components of OpenSSL and affect a wide range of supported ...
USA Today

OpenSSL, widely used encryption library, patches high vulnerabilities. What to know.

Websites and companies that rely on OpenSSL should patch their systems as soon as possible. The developer of Open SSL, a widely used open-source encryption library, released Tuesday a patch to fix two ...
Infosecurity Magazine

Autonomous System Uncovers Long-Standing OpenSSL Flaws

The issues were uncovered by AISLE and disclosed through a coordinated process with the OpenSSL project. OpenSSL is one of ...
Bleeping Computer

OpenSSL fixes two high severity vulnerabilities, what you need to know

The OpenSSL Project has patched two high-severity security flaws in its open-source cryptographic library used to encrypt communication channels and HTTPS connections. The vulnerabilities ...
Computer Weekly

OpenSSL vulnerabilities ‘not as bad as feared’

The team behind the widely used open source cryptographic library OpenSSL has patched two vulnerabilities in the service that it had previously taken the somewhat unusual step of pre-warning security ...
PC World

New OpenSSL vulnerability puts encrypted communications at risk of spying

A newly discovered vulnerability that allows spying on encrypted SSL/TLS communications has been identified and fixed in the widely used OpenSSL library. The vulnerability, which is being tracked as ...
InfoWorld

OpenSSL patches two vulnerabilities in cryptographic library

The OpenSSL project team has patched two vulnerabilities in the cryptographic library and enhanced the strength of existing cryptography used by OpenSSL versions 1.0.1 and 1.0.2. OpenSSL 1.0.2 users ...
The Atlantic

Another Heartbleed-Style OpenSSL Vulnerability Discovered

Just a few months after Heartbleed was discovered and (thankfully) resolved, another OpenSSL bug is haunting web encryptions. The new bug SSL/TLS MITM was posted by the OpenSSL group in a formal ...
Computerworld

OpenSSL warns vendors against using vulnerability info for marketing

Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component. The warning comes from the OpenSSL ...