Explore top 10 tips to secure your open-source projects now. Read More
×
As it turns out, the bug is a denial-of-service condition that affects only version 1.0.2 of the ubiquitous crypto library. A dozen other vulnerabilities (nine ranked moderate, and three low) in older versions were also patched today. Users are urged to upgrade to version 1.0.2a.
The link for this article located at ThreatPost is no longer available.