1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

No more security fixes for older OpenSSL branches

Discussion in 'CSO' started by RSS, Dec 3, 2015.

  1. RSS

    RSS New Member Member

    The OpenSSL Software Foundation has released new patches for the popular open-source cryptographic library, but for two of its older branches they will likely be the last security updates.

    This could spell trouble for some enterprise applications that bundle the 0.9.8 or 1.0.0 versions of OpenSSL and for older systems -- embedded devices in particular -- where updates are rare.

    OpenSSL 1.0.0t and 0.9.8zh, which were released Thursday, are expected to be the last updates because support for these these two branches will end on Dec. 31, as listed in the organization's release strategy document.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page