Security Updates

  • Security Update: GHOST glibc Vulnerability

    On 27th January, a serious vulnerability in glibc, which is one of core libraries of Linux, was reported. The GHOST Vulnerability CVE-2015-0235 This vulnerability, known as GHOST, allows an attacker to execute any malicious code on an affected system from the outside. As a result, private information stored can be...

  • Security Update: POODLE SSLv3 Vulnerability

    On 14th October, a serious design flaw in SSLv3, cryptographic protocol to provide secure communication over the Internet, was reported. This POODLE Bites: Exploiting The SSL 3.0 Fallback CVE-2014-3566 This vulnerability, known as POODLE, allows an attacker to steal private information stored on our services from...

  • Security Update: ShellShock bash Vulnerability

    On 24th September, a critical vulnerability in bash, a shell widely used on the UNIX/Linux system, was reported.  CVE-2014-6271 This vulnerability known as ShellShock allows an attacker to execute an arbitrary command on an affected system to obtain private information stored in services from the outside. While a fix for the...

  • Security Update: Heartbleed OpenSSL Vulnerability

    UPDATE: 2014-04-16 We have confirmed that all of the old certificates have been added to the Certificate Revocation List (CRL) provided by certificate issuer by April 15th 8:38  On April 7th, a critical vulnerability in the widely used cryptography library OpenSSL, was reported.  CVE-2014-0160 Heartbleed Bug This vulnerability,...