1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

The OpenSSL Heartbleed Bug Strikes The Internet

Free Software

Published on 07 April 2014 11:21 PM EDT
Written by Michael Larabel in Free Software
15 Comments

As many Phoronix readers have already reported in, a very serious OpenSSL security vulnerability was discovered that allows for attackers to read memory in 64k memory chunks. A very serious bug in OpenSSL 1.0.1/1.0.2-beta is leaking information since the bug's introduction in 2011.

As explained in the OpenSSL.org advisory, "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server."

For security experts and system administrators out there, a ton more information is revealed via the Heartbleed.com web-site setup that covers all of the details for this massive OpenSSL security vulnerability. New versions of OpenSSL have already been released to address this security vulnerability now present in major operating systems.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Linux Hardware Reviews
  1. Trying The Configurable 45 Watt TDP With AMD's A10-7800 / A6-7400K
  2. Sumo's Omni Gets Reloaded
  3. AMD A10-7800 & A6-7400K APUs Run Great On Linux
  4. Radeon Gallium3D Is Running Increasingly Well Against AMD's Catalyst Driver
Latest Linux Articles
  1. Intel Sandy Bridge Gets A Surprise Boost From Linux 3.17
  2. Open-Source Radeon Graphics Have Some Improvements On Linux 3.17
  3. CPUFreq Scaling Tests With AMD's Kaveri On Linux 3.16
  4. Enabling HyperZ Is Still An Easy Way For Faster RadeonSI Performance
Latest Linux News
  1. Userptr Support Set For AMD Radeon GPUs In Linux 3.18
  2. NVIDIA Releases CUDA 6.5 As A Huge Update
  3. GNOME 3.14 Beta Makes GLSL Optional, Supports Wayland Gesture/Touch Events
  4. KDE Software Compilation 4.14 Released
  5. The Many Things You Can Build With A Raspberry Pi
  6. AMD's Catalyst Linux Driver Preparing For A World Without An X Server?
  7. Khronos Publishes Its Slides About OpenGL-Next
  8. Proposed: A Tainted Performance State For The Linux Kernel
  9. Systemd 216 Piles On More Features, Aims For New User-Space VT
  10. LXQt 0.8 Is Being Released Soon
Latest Forum Discussions
  1. Dead Island for Linux (?)
  2. Systemd 216 Piles On More Features, Aims For New User-Space VT
  3. The dangers of Linux kernel development
  4. Remote gui not accessible in Phoronix Test Suite 5.2
  5. Updated and Optimized Ubuntu Free Graphics Drivers
  6. AMD Offers Mantle For OpenGL-Next, Pushes Mantle To Workstations
  7. Next-Gen OpenGL To Be Announced Next Month
  8. OpenGL 4.5 Released With New Features