New bugs found in software that caused ‘Heartbleed’ cyber threat
http://www.rawstory.com/rs/2014/06/05/new-bugs-found-in-software-that-caused-heartbleed-cyber-threat/
New bugs found in software that caused Heartbleed cyber threat
By Reuters
Thursday, June 5, 2014 17:48 EDT
BOSTON (Reuters) Security researchers have uncovered new bugs in the Web encryption software that caused the pernicious Heartbleed Internet threat that surfaced in April.
Experts said the newly discovered vulnerabilities in OpenSSL, which could allow hackers to spy on communications, do not appear to be as serious a threat as Heartbleed.
The new bugs were disclosed on Thursday as the group responsible for developing that software released an OpenSSL update that contains seven security fixes.
Experts said that websites and technology firms that use OpenSSL technology should install the update on their systems as quickly as possible. Still, they said that could take several days or weeks because companies need to first test systems to make sure they are compatible with the update.