\u7814\u7a76\u4eba\u54e1\u6307\u51fa\uff0cHeartbleed\u81ed\u87f2\u5df2\u5b58\u57282\u5e74\u4ee5\u4e0a\uff0c\u53d7\u5f71\u97ff\u7684\u7248\u672c\u904d\u53ca2011\u5e7412\u6708\u7684OpenSSL 1.0.1\u52301.0.1f\u3002\u53e6\u4e5f\u6709\u8a31\u591a\u5167\u542bOpenSSL\u7684\u4f5c\u696d\u7cfb\u7d71\u53d7\u5230\u5f71\u97ff\uff0c\u5305\u62ecDebian Wheezy\uff0cUbuntu 12.04.4 LTS\uff0cCentOS 6.5\u3001Fedora 18\u3001OpenBSD 5.3\u53ca 5.4 \u3001FreeBSD 10.0 \u4ee5\u4e0a\u53caNetBSD 5.0.2\u3002OpenSSL\u4e26\u5df2\u540c\u6642\u91cb\u51faOpenSSL 1.0.1g\u4fee\u88dc\u8a72\u6f0f\u6d1e\u3002<\/div>\n
<\/div>\n
OpenSSL\u662f\u4e00\u500b\u958b\u653e\u6e90\u78bc\u7db2\u8def\u50b3\u8f38\u52a0\u5bc6\u51fd\u5f0f\u5eab\uff0c\u4f7f\u7528\u76f8\u7576\u5ee3\u6cdb\uff0c\u9023\u5168\u7403\u4f54Web\u4f3a\u670d\u5668\u4e00\u534a\u4ee5\u4e0a\u7684Apache\u90fd\u662f\u4f7f\u7528\u9019\u5957\u8edf\u9ad4\u4f86\u9032\u884cSSL\/TLS\u52a0\u5bc6\u3002\u9019\u9805\u6f0f\u6d1e\u662f\u7531\u5b89\u5168\u516c\u53f8Codenomicon\u53caGoogle\u5b89\u5168\u90e8\u9580\u7684Neel Mehta\u767c\u73fe\u3002<\/div>\n
<\/div>\n
\u7531\u65bc\u9019\u500b\u6f0f\u6d1e\u5b58\u5728OpenSSL\u7684TLS\/DTLS \u50b3\u8f38\u5b89\u5168\u5c64\u7684heartbeat\uff08\u5fc3\u8df3\uff09\u64f4\u5145\u529f\u80fd\u4e4b\u4e2d\uff0c\u8a72\u6f0f\u6d1e\u53d7\u5230\u653b\u64ca\u6642\u6703\u9020\u6210\u8a18\u61b6\u9ad4\u5167\u5bb9\u7684\u5916\u6d29\uff0c\u53ef\u80fd\u5f9e\u4f3a\u670d\u5668\u7aef\u5916\u6d29\u5230\u5ba2\u6236\u7aef\uff0c\u6216\u8005\u7531\u5ba2\u6236\u7aef\u5916\u6d29\u5230\u4f3a\u670d\u5668\u7aef\uff0c\u56e0\u6b64\u7814\u7a76\u4eba\u54e1\u5c07\u5b83\u547d\u540d\u70baHeartbleed\uff08\u5fc3\u5728\u6dcc\u8840\uff09 \u81ed\u87f2\uff08Heartbleed bug\uff09\u3002\u9019\u500b\u6f0f\u6d1e\u4e26\u4e0d\u662fSSL\/TLS\u5354\u5b9a\u7684\u554f\u984c\uff0c\u800c\u662fOpenSSL\u51fd\u5f0f\u5eab\u7684\u7a0b\u5f0f\u932f\u8aa4\u3002<\/div>\n
<\/div>\n
Codenomicon\u4eba\u54e1\u89e3\u91cb\uff0cHeartbleed\u81ed\u87f2\u53ef\u80fd\u8b93\u7db2\u8def\u4e0a\u4efb\u4f55\u4eba\u8b80\u53d6\u5230\u7531OpenSSL\u9632\u8b77\u7684\u7cfb\u7d71\u8a18\u61b6\u9ad4\uff0c\u9032\u800c\u7372\u5f97\u8fa8\u8b58\u670d\u52d9\u4f9b\u61c9\u5546\u6216\u52a0\u5bc6\u7db2\u8def\u6d41\u91cf\u7684\u5bc6\u9470\uff0c\u6216\u662f\u4f7f\u7528\u8005\u7684\u5e33\u865f\u5bc6\u78bc\u53ca\u5be6\u969b\u5167\u5bb9\u3002\u653b\u64ca\u8005\u53ef\u85c9\u6b64\u7aca\u53d6\u670d\u52d9\u6216\u8eab\u4efd\u9a57\u8b49\u5167\u5bb9\uff0c\u4e26\u4e14\u5047\u5192\u670d\u52d9\u6216\u4f7f\u7528\u8005\u8eab\u4efd\u3002<\/div>\n
<\/div>\n
\u7814\u7a76\u4eba\u54e1\u5be6\u5730\u6e2c\u8a66\u767c\u73fe\uff0cHeartbleed\u81ed\u87f2\u53ef\u8b93\u4ed6\u5011\u7121\u9700\u6b0a\u9650\u8cc7\u6599\u5c31\u53ef\u4ee5\u53d6\u5f97\u81ea\u5df1\u7684x.509\u52a0\u5bc6\u91d1\u9470\u3001\u7528\u6236\u5e33\u865f\u3001\u5373\u6642\u901a\u8a0a\u3001email\u53ca\u516c\u53f8\u91cd\u8981\u6587\u4ef6\u53ca\u901a\u8a0a\u5167\u5bb9\uff0c\u800c\u4e14\u5b8c\u5168\u4e0d\u7559\u4efb\u4f55\u75d5\u8de1\u3002\u56e0\u6b64\u5373\u4f7f\u516c\u53f8\u7cfb\u7d71\u66fe\u7d93\u906d\u5230\u5165\u4fb5\uff0c\u7ba1\u7406\u54e1\u53ef\u80fd\u4e5f\u7121\u5f9e\u5f97\u77e5\u3002\uff08\u7de8\u8b6f\/\u6797\u598d\u6eb1\uff09<\/div>\n<\/div>\n