On Thu, Jul 09, 2015 at 01:13:30PM +0000, Salz, Rich wrote: > > This issue affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o. > > In other words, if you are not using those specific releases -- i.e., the > ones that came out less than 30 days ago -- you do not need to upgrade. More accurately, you should upgrade anyway, to address the issues resolved by those earlier releases, even though the specific issue in the most recent release applies only to its immediate predecessors. -- Viktor.
