it.ucsf.edu

Security Update:OpenSSL Releases Security Updates to Address Vulnerabilities That Can Result in a Denial of Service

Status Type

Security Update

Date and Time

Thursday, November 10, 2016 - 15:57

Reason

Security Update

Impact

OpenSSL 1.1.0 Users

 

WHAT HAPPENED?
OpenSSL version 1.1.0c has been released to address multiple vulnerabilities. The greatest severity is rated as "High".

Advanced Users: For a complete description of the vulnerabilities and affected versions visit OpenSSL Security Advisory [10 Nov 2016] at https://www.openssl.org/news/secadv/20161110.txt.


AVAILABLE UPDATES INCLUDE:

  • OpenSSL 1.1.0


WHAT'S THE PROBLEM?
Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition.


WHAT DO I NEED TO DO?
Upgrade your software

  1. If IT Field Services or you have other IT support, no action on your part is required.
  2. If you do not have IT support, updates may be obtained through OpenSSL Security Advisory [10 Nov 2016] at https://www.openssl.org/news/secadv/20161110.txt.


RELATED LINKS