Easysoft Blog

Thu, 08 May 2014

Easysoft Not Affected by Heartbleed

The Heartbleed Bug was announced last month and can only occur in open-source software called OpenSSL, which is widely used to encrypt different types of web communications.

Heartbleed reveals the contents of a server's memory, where sensitive data is stored.

The bug appears in OpenSSL versions 1.0.1 to 1.0.1f. Version 1.0.1g fixes the bug but is only slowly being rolled out to affected servers.

Easysoft ODBC and JDBC Drivers either do not use OpenSSL or use a version prior to 1.0.1 and are therefore not affected by the Heartbleed Bug.

If you are concerned about the safety of your own installation then you are advised to contact the suppliers of any of the software you use for communication on your server and ask them all which version of OpenSSL they use; if they use anything before 1.0.1 or use 1.0.1g or later then you are safe from this internet flaw.

You can run a quick check to see whether or not sites are susceptible using this tool: http://filippo.io/Heartbleed.