Both of the moderate vulnerabilities affect DTLS users and could lead to a Denial of Service attack. In the first vulnerability, sends a crafted DTLS message will cause a segmentation faul. In the second a memory leak can occur in the dtls1_buffer_record function .
The rest of the vulnerabilities are rated as a low risk.
OpenSSL users should patch their systems, particularly systems using DTLS. Source code is available for the OpenSSL patches you find here https://www.openssl.org/source/
The European Union Agency for Network and Information Security (ENISA), which is the center of knowledge about cyber security in Europe, organizes as every year in October the European Cyber Security Month. The campaign is starting in a few days. What is its purpose and how can you participate in it?
General Data Protection Regulation (GDPR) is a 99-article regulation meant to protect the private data of Europeans in IT systems. Announced in 2016, covers a broad variety of topics and will go into effect as a requirement on May 25, 2018. GDPR applies to any company doing business in Europe even if it is located elsewhere.
In November this year we wrote about the need to replace SSL certificates issued by Symantec Group. Find out the dates when you need to re-issue your certificates.