AAPL Stock: 118.03 ( -0.85 )

Printed from

Google patches Mail, Search, others for Heartbleed OpenSSL bug

updated 02:57 pm EDT, Wed April 9, 2014

Android 4.1.1 vulnerable, device manufacturers informed

In the wake of the disclosure of the OpenSSL "Heartbleed" bug, search engine Google has patched its systems to counter the day-zero flaw. While noting that Google Chrome and ChromeOS aren't affected, the search engine behemoth has fixed any issues with Search, Gmail, YouTube, Wallet, Play, Apps, and App Engine.

Specialty services that Google provides need some care by the user to guarantee security. Customers of CloudSQL should use whitelisting to ensure that only known hosts can access instances. Customers need to manually update OpenSSL on each running instance of the Google Compute Engine, then follow with a reboot. Google Search Appliance customers have yet to see a patch.

Most of Google's Android OS devices are safe from the flaw, with the exception of those running Android 4.1.1 (roughly a third of all active users, according to Google). Patching information is being provided to developers and distributors of Android 4.1.1 hardware, with security being the responsibility of the partner. The Samsung Galaxy SIII smartphone is a device commonly associated with Android 4.1.1.

by MacNN Staff



Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines

Follow us on Facebook


Most Popular


Recent Reviews

Ultimate Ears Megaboom Bluetooth Speaker

Ultimate Ears (now owned by Logitech) has found great success in the marketplace with its "Boom" series of Bluetooth speakers, a mod ...

Kinivo URBN Premium Bluetooth Headphones

We love music, and we're willing to bet that you do, too. If you're like us, you probably spend a good portion of your time wearing ...

Jamstik+ MIDI Controller

For a long time the MIDI world has been dominated by keyboard-inspired controllers. Times are changing however, and we are slowly star ...


Most Commented