[Twisted-Python] Security Advisory: OpenSSL 1.0.1g
Tobias Oberstein
tobias.oberstein at tavendo.de
Tue Apr 8 03:40:57 MDT 2014
> Any machine which is serving traffic over TLS, or which is making outgoing TLS
> connections should upgrade it's version of OpenSSL immediately.
>
> This issue has been assigned CVE-2014-0160.
Thanks for bringing this to attention!
Here is a test tool that checks for the vuln.
https://github.com/titanous/heartbleeder
I could see it work on at least 1 machine: before upgrade it detected the vuln., after upgrade, clean.
/Tobias
More information about the Twisted-Python
mailing list