1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

The OpenSSL Heartbleed Bug Strikes The Internet

Free Software

Published on 07 April 2014 11:21 PM EDT
Written by Michael Larabel in Free Software
15 Comments

As many Phoronix readers have already reported in, a very serious OpenSSL security vulnerability was discovered that allows for attackers to read memory in 64k memory chunks. A very serious bug in OpenSSL 1.0.1/1.0.2-beta is leaking information since the bug's introduction in 2011.

As explained in the OpenSSL.org advisory, "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server."

For security experts and system administrators out there, a ton more information is revealed via the Heartbleed.com web-site setup that covers all of the details for this massive OpenSSL security vulnerability. New versions of OpenSSL have already been released to address this security vulnerability now present in major operating systems.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Articles & Reviews
  1. Ubuntu vs. Fedora Linux On Lenovo's X1 Carbon With Core i7 Broadwell
  2. Ubuntu 15.04 Is The Easy Path To Better Performance On Intel Broadwell
  3. NVIDIA's Latest Maxwell Line-Up Against AMD With Catalyst On Linux
  4. Preliminary Tests Of Intel Sandy Bridge & Ivy Bridge vs. Broadwell
  5. AMD FX-8320E Performance On Linux
  6. Linux Compiler Benchmarks Of LLVM Clang 3.5 vs. LLVM Clang 3.6-rc1
Latest Linux News
  1. Libinput 0.9 Adds Support For Hovering Fingers On Touchpads
  2. Free Software Foundation Endorses Another (Outdated) Laptop
  3. DNF Plugins Extend The Functionality Of Fedora's Yum Successor
  4. LibreOffice 4.4 Released With Better OOXML Support, UI Improvements
  5. Inkscape 0.91 Goes Through C++ Code Conversion, New Cairo Rendering, OpenMP Filters
  6. New Mesa Patch To Improve CPU-Bound Applications
  7. LLVM Adds Options To Do Fuzz Testing
  8. Coreboot Now Supports Another Dual-Socket AMD Motherboard
  9. Atomic Mode-Setting/Display Support Progresses In Linux 3.20
  10. NVIDIA 340.76 Brings Three Stable Fixes
Most Viewed News This Week
  1. PlayStation 4 System Compiler Support Landing In LLVM
  2. LibreOffice 4.4 Is Coming Soon With New Features
  3. Linux "GHOST" Vulnerability Hits Glibc Systems
  4. My Initial Intel Broadwell Linux Experience With The ThinkPad X1 Carbon
  5. Broadwell Linux Ultrabook Running MUCH Cooler Than Haswell
  6. LZHAM 1.0 Lossless Data Compression Codec Released
  7. Linux Users Upset By Chromium's Busted HiDPI Support
  8. Faster VP9 Decoding Is On The Horizon