Bruno, I think it is OpenSSH you need to ask them about. There was a root exploit in it earlier in the week, so if they *haven't* updated that then you have some other questions to ask. I have gathered from reading the threads on this that it is upgrading OpenSSH that is breaking OpenSSL, or at least that's how it sounds to me.