Forum OpenACS Development: Re: Security Bug In OpenSSL

Collapse
3: Re: Security Bug In OpenSSL (response to 1)
Posted by Neophytos Demetriou on 04/09/14 11:25 AM
Yeah, thanks Michael. With the following python script anyone in the world can dump a bit of RAM from a vulnerable server:
https://gist.github.com/takeshixx/10107280

You would need to patch your services and re-issue keys. Upgrading to openssl-1.0.1g seems to be a good first step.

See also:
- http://youtu.be/w8IxN3lEAuU
- https://www.mattslifebytes.com/?p=533