OpenSSL was updated to fix several vulnerabilities:
* SSL/TLS MITM vulnerability. (CVE-2014-0224)
* DTLS recursion flaw. (CVE-2014-0221)
* Anonymous ECDH denial of service. (CVE-2014-3470)
Further information can be found at
<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>
<<a href=“http://www.openssl.org/news/secadv_20140605.txt”>http://www.openssl.org/news/secadv_20140605.txt</a>> .
Security Issues references:
* CVE-2014-0224
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224</a>>
* CVE-2014-0221
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0221">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0221</a>>
* CVE-2014-3470
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3470">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3470</a>>