Munich, 09 April 2014
Yesterday the media and in particular specialized press have started reporting extensively about the Heartbleed bug. This bug has been classified as severe because it makes it possible to extract data from computers using the normally protected SSL system for data transmission.
Shortly after news about the bug had been released, the entire infrastructure as well as all affected computers were updated.
We advise our customers to check their system infrastructure as well. Please do not restrict the check to servers. Also test company workplaces and pay special attention to your company firewalls as they frequently use OpenSSL.
Versions 1.0.1 to 1.0.1f of the OpenSSL library are affected by the Heartbleed bug.
A bug fix - in form of version 1.0.1g - has been released on 7 April 2014.
Please contact us at any time if you have further questions.