Oracle identifies products affected by Heartbleed, but work remains on fixes

‹ PrevPC World Icon PC WorldNext ›
Wed 11:40am by: PC World

Oracle has issued a comprehensive list of its software that may or may not be affected by the OpenSSL (secure sockets layer) vulnerability known as Heartbleed, while warning that no fixes are yet available for some likely affected products.

The list includes well over 100 products that appear to be in the clear, either because they never used the version of OpenSSL reported to be vulnerable to Heartbleed, or because they don't use OpenSSL at all.

However, Oracle is still investigating whether another roughly 20 products, including MySQL Connector/C++, Oracle SOA Suite and Nimbula Director, are vulnerable.

To read this article in full or to leave a comment, please click here



‹ Prev   Next Article ›