Converged Data Center Infrastructure
Showing results for 
Search instead for 
Do you mean 

OpenSSL "Heartbleed" Vulnerability

on ‎04-21-2014 07:24 AM

On April 8, 2014 HP was notified of the CVE-2014-0160 vulnerability (now known as "Heartbleed") in the open-source OpenSSL toolkit. This vulnerability has garnered a substantial amount of media attention. See references section for link to National Vulnerability Database entry describing vulnerability in detail.

 

OpenSSL is used in some HP products to provide encryption and SSL services. HP is committed to delivering secure systems that effectively manage our invaluable customer and employee data. Upon knowledge of the "Heartbleed" vulnerability, HP teams began an aggressive and comprehensive review of all actively supported products.

 

HP takes Internet vulnerabilities seriously and works collaboratively through organizations like the Information Technology Information Sharing & Analysis Center (IT-ISAC), government agencies and industry partners to share information about the vulnerabilities and how to effectively address them. With regard to addressing the potential impact of the recently identified “Heartbleed” OpenSSL vulnerability, HP is closely examining our systems and sites for the vulnerability and performing remediation as needed to ensure this vulnerability is not exploited.  Also, it should be noted that HP consistently employs security controls and procedures to protect against attacks that target our systems and networks

 

Go here to get HP info on the virus and what can you do.

0 Kudos
About the Author

chuckk281

Events
Each Month in 2016
Online
Software Expert Days - 2016
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
Sep 30
Seattle, WA
OpenStack Days Seattle
OpenStack Days Seattle, September 30, is the largest gathering of OpenStack users and prospective users in the Pacific Northwest region.
Read more
View all