OpenSSL bug CVE-2014-0160 | Tor Project

Checking out Hacker News for a refreshing end to my work day, I was instead greeted with the worst of all tech-related bad news: Heartbleed, an exploit in popular versions of OpenSSL allowing attackers anonymous (read: no way to figure out how widely it’s been exploited up to this point) access to 64kb of memory of an affected client or server. How bad is it? Tor had this to offer in its blog post on the subject: