Saturday, April 12, 2014

The Heartbleed Bug


Image and video hosting by TinyPic

Heartbleed is a bug in the code used for making communications secure on more than two-thirds of active websites on the internet, as well as email and chat servers and virtual private networks.cbcnews

The bug, named for the "heartbeat" part of the code that it affects, was independently discovered recently by Codenomicon and Google Security researcher Neel Mehta. The official name for the vulnerability is CVE-2014-0160.cbcnews

Android: According to the Google blog April 9, Heartbleed only affects Android 4.1.1 and patching information for Android 4.1.1 is being distributed to Android partners.cbcnews

"NSA was not aware of the recently identified vulnerability in OpenSSL, the so-called Heartbleed vulnerability, until it was made public in a private-sector cybersecurity report,'' the agency said in a statement. "Reports that say otherwise are wrong.USA Today

More info about heartbleed

#OERIP08

No comments:

Post a Comment