Six security flaws fixed in OpenSSL – The H Security
The OpenSSL developers have released two updates, 1.0.0f and 0.9.8s, which close six security holes. Four of the flaws affect both the 1.0.0 and 0.9.8 versions. Among them, the critical vulnerability in the CBC (“Cipher block chaining”) encryption mode which enabled plaintext recovery of OpenSSL’s implementation of DTLS (Datagram TLS), has been addressed.
Read more: The H Security