OpenSSL posted new releases 1.0.1r and 1.0.2f this week. Michael Mimosa describes the content of the new releases in the Threatpost article “OpenSSL to Patch Two Vulnerabilities This Week” including the following quote from the OpenSSL security advisory:
“They will fix two security defects, one of ‘high’ severity affecting 1.0.2 releases, and one ‘low’ severity affecting all releases,” OpenSSL said in its advisory.
Read more on Threatpost.