it has been reported recently that there is a serious vulnerability in OpenSSL 1.0.1. It is recommended to adopt the fix (OpenSSL 1.0.1g) ASAP.
In few days.When will 5.5.3 be released with the OpenSSL bug fix?
That's correct.We're using 5.5.2 and from my reading the underlying OpenSSL core is 1.0.1f? Can somebody confirm this?
Correct. OpenSSL is used with FTP over TLS/SSL only. Majority (about 98%) of WinSCP users use SSH (SFTP/SCP) and plain FTP only and are NOT affected!We're using the SSH feature over sFTP of WinSCP so we should be safe on the 'Heartbleed' bug.
You can post new topics in this forum