OpenSSL security vulnerability

April 08, 2014

A new build of Centova Cast's web server is now available, which fixes a critical security issue in OpenSSL. All users are strongly urged to update.

This update addresses a critical security issue (CVE-2014-0160) in OpenSSL. While this issue is not specific to Centova Cast (in fact, it affects a majority of the HTTPS/SSL web servers on the Internet), Centova Cast does use OpenSSL for its SSL functionality and thus is affected by this vulnerability. Accordingly, we have immediately issued a new build of Centova Cast's web server using a fixed version of OpenSSL (1.0.1g).