On Thursday, OpenSSL is going to fix several security holes, one of which it has labeled “high” severity. The announcement is been made on the mailing list note by the OpenSSL staffer Matt Caswell.
“The OpenSSL project team would like to announce the forthcoming release of OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf,” the message reads.Maybe for security purposes and prevention of attacks, details about the flaw have not been discussed. The release of patched version will be made available on 19th March.
Earlier last year, researchers discovered a high-risk vulnerability on OpenSSL dubbed as HeartBleed, a security flaw that allows attackers to steal the security keys used for website encryption and decryption.
HeartBleed was amongst the biggest vulnerability in the history of the Internet, which put more than half of the internet under threat.
Moreover recently, researchers also found that OpenSSL was affected by another security flaw "FREAK".
Experts are speculating the new bug could be the next Heartbleed vulnerability.