1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking Benchmarking Platform
Phoromatic Test Orchestration

The OpenSSL Heartbleed Bug Strikes The Internet

Free Software

Published on 07 April 2014 11:21 PM EDT
Written by Michael Larabel in Free Software
15 Comments

As many Phoronix readers have already reported in, a very serious OpenSSL security vulnerability was discovered that allows for attackers to read memory in 64k memory chunks. A very serious bug in OpenSSL 1.0.1/1.0.2-beta is leaking information since the bug's introduction in 2011.

As explained in the OpenSSL.org advisory, "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server."

For security experts and system administrators out there, a ton more information is revealed via the Heartbleed.com web-site setup that covers all of the details for this massive OpenSSL security vulnerability. New versions of OpenSSL have already been released to address this security vulnerability now present in major operating systems.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Linux News
  1. Btrfs In Linux 4.2 Brings Quota Updates, Many Fixes
  2. Latest Rumor Pegs Microsoft Wanting To Buy AMD
  3. The Next-Gen Phoronix Site Experience Is Almost Ready
  4. Exciting Features Merged So Far For The Linux 4.2 Kernel
  5. Mesa 10.6.1 Brings A Bug-Fix For Dota 2 Reborn
  6. DragonFlyBSD 4.2 Released: Brings Improved Graphics & New Compiler
  7. Wine-Staging 1.7.46 Improves The OS X Experience
  8. The State & Complications Of Porting The Unity Editor To Linux
  9. Libreboot Now Supports An AMD/ASUS Motherboard
  10. SafeStack Merged Into LLVM To Protect Against Stack Buffer Overflow Attacks
Latest Articles & Reviews
  1. How KDE VDG Is Trying To Make Open-Source Software Beautiful
  2. Attempting To Try Out BCache On The Linux 4.1 Kernel
  3. CompuLab's Fitlet Is A Very Tiny, Fanless, Linux PC With AMD A10 Micro
  4. AMD A10-7870K Godavari: RadeonSI Gallium3D vs. Catalyst Linux Drivers
Most Viewed News This Week
  1. Linus Is Looking Forward To Merging KDBUS, But Not Convinced By Performance
  2. Kubuntu 15.10 Could Be The End Of The Road
  3. NVIDIA Starts Supplying Open-Source Hardware Reference Headers
  4. KDBUS Won't Be Pushed Until The Linux 4.3 Kernel
  5. Linux 4.2 Kernel Gets Port To New Processor Architecture
  6. EXT4 Has Many Cleanups & Fixes For Linux 4.2
  7. The Staging Pull For Linux 4.2: "Big, Really Big"
  8. SteamOS "Brewmaster" Is Valve's New Debian 8.1 Based Version