openssl
Page content
- Author: James Buren
- Vulnerable: 1.0.1-5arcturus1
- Unaffected: 1.0.1-5arcturus2
A vulnerability has been discovered in OpenSSL’s support for the TLS/DTLS Heartbeat extension. Up to 64KB of memory from either client or server can be recovered by an attacker. This vulnerability might allow an attacker to compromise the private key and other sensitive data in memory.