Alternative chains certificate forgery
Earlier this morning, OpenSSL released a security patch to fix a new vulnerability discovered in OpenSSL versions 1.0.2 and 1.0.1. This patch fixes one high severity vulnerability, which primarily affects clients.
- This bug does not affect private keys for Certificates on Bright Servers
- No hardware operated by Aura Software is effected.
- No action is required of Bright customers unless a) you are operating your own hardware; in which case you should check with your hosting provider or b) your site use a certificate not directly procured through us.