In what it categorized from “high severity” to “low severity,” OpenSSL released security updates today which address vulnerabilities in previous versions. Exploitation of one of these vulnerabilities could allow an attacker to obtain sensitive information. The security advisory affects versions of OpenSSL prior to April 2015. Available updates include:
- OpenSSL 1.0.2h for 1.0.2 users
- OpenSSL 1.0.1t for 1.0.1 users
The full security advisory, including solutions, can be found on the OpenSSL website.