Heartbleed security update

As you may be aware, a serious vulnerability codenamed "Heartbleed" was recently discovered in OpenSSL, the open-source software library used by nearly all internet-enabled devices to implement secure SSL (Secure Sockets Layer) and TLS (Transport Layer Security) connections.

The vulnerability allows an attacker to, in theory, read supposedly secure information from the server's memory; this includes data such as usernames, passwords and even the encryption keys used to secure communications with the server.

We would like to assure you that the version of OpenSSL currently used on this website is not vulnerable to this, and so you need take no action. Furthermore, any updates applied from now on will not include this bug as it has been fixed.

We are continuing to monitor the situation and will report if anything untoward is discovered. In the meantime, please see heartbleed.com for more information, or contact the Webmaster.

Print Email