OpenSSL 4.0.0 removes several long-deprecated features, adds support for Encrypted Client Hello, and introduces API-level changes that will require code updates for applications built against older versions. SSLv3, SSLv2 client hello, and engines are gone SSLv3 support has been removed. The protocol was deprecated in 2015, and OpenSSL had it disabled by default since version…
Tag: OpenSSL
AI, Global Security News
OpenSSL 3.6.2 lands with eight CVE fixes
OpenSSL 3.6.2 patches eight CVEs across a range of components. The project rates the most severe issue in the release as Moderate. What got fixed The release fixes incorrect failure handling in RSA KEM RSASVE encapsulation (CVE-2026-31790) and a loss of key agreement group tuple structure when the DEFAULT keyword is used in server-side configuration…
AI, Global Security News
9to5Linux Weekly Roundup: February 1st, 2026
The end of January brought us new software releases, including GParted 1.8, Calibre 9.0, Transmission 4.1, GStreamer 1.28, OpenSSL 3.6.1, VirtualBox 7.2.6, Shotcut 26.1, TigerVNC 1.16, and Proton 10.0-4, as well as several distro releases, including Tails 7.4.1, AerynOS 2026.01, Linux Lite 7.8, GParted Live 1.8, and Emmabuntüs DE 5 1.05. On top of that,…