Capitalware’s Products and the Heartbleed Issue

None of Capitalware’s Products directly use OpenSSL, so the Heartbleed issue does not directly affect our products.

If you use MQAUSX on Linux and have configured MQAUSX to target an LDAP server using “LDAP over SSL”, then you will want to check what OpenSSL package is installed on your Linux server.
i.e.

rpm -qa | grep openssl

The affected versions of OpenSSL are OpenSSL 1.0.1 through 1.0.1f (inclusive). If you have an affected version then have your Linux SysAdmin upgrade your Linux server ASAP.

Regards,
Roger Lacroix
Capitalware Inc.

This entry was posted in Capitalware, MQ Authenticate User Security Exit, MQ Channel Encryption, MQ Enterprise Security Suite, MQ Message Encryption, MQ Standard Security Exit, Open Source, Operating Systems, Security.

Comments are closed.