The OpenSSL Corporation Releases Its Annual Report 2025

Looking ahead to 2026, the organisation focus is on the OpenSSL Library 4.0 release, continued FIPS 140-3 validation efforts, expanded customer engagement, and the ongoing operation of the OpenSSL ...

OpenSSL: 12 security gaps, one allows malicious code execution and is critical

IT researchers have discovered 12 security vulnerabilities in the open-source encryption library OpenSSL, one of which is ...

12 OpenSSL bugs survived since the 90s until AI finally showed up

Decades-old OpenSSL flaws surfaced through autonomous code analysis – showing how AI can detect crashes, corruption, and cryptographic errors earlier.

OpenSSL 3 performance issues causing a scalability and security dilemma for organizations

OpenSSL 3.x creates a critical scalability and security dilemma for the industry, forcing organizations to evaluate ...

AISLE Researchers Identify 12 New Security Vulnerabilities in OpenSSL Using AI-Driven Discovery

Vulnerabilities affect cryptographic software that is widely deployed across global infrastructure, enabling remote code execution, denial of service, application crashes and other disruptionsSAN ...
Threat Post

OpenSSL Patches Critical Certificate Validation Vulnerability

A high-severity bug in OpenSSL was disclosed today, and it affects only organizations that installed an update released in June, and allows anyone with an untrusted TLS certificate to become a CA.

OpenSSL Corporation Advisory Committees' Elections 2026: Voting Now Open

NEWARK, Del., Feb. 2, 2026 /PRNewswire/ -- The OpenSSL Corporation announces that voting for the 2026 Business and Technical Advisory Committees elections is now open. Registered members of the ...
ZDNet

Google takes OpenSSL and turns it into BoringSSL

Google announced over the weekend that it had taken the OpenSSL codebase, and forked it to create a new project dubbed BoringSSL. In the past, Google had taken OpenSSL and rebased its custom patches ...