April 14 2014: HeartBleed OpenSSL vulnerability

Attention: On April 8 2014, OpenSSL libraries have been publicized that a vulnerability exists in certain versions of OpenSSL implementation.

 

Notice: PayFlex Systems is not vulnerable to HeartBleed,  (CVE-2014-0160). Our gateway is not using this implementation version

Notice to our affiliates: It is recommended that SSL certificates be reissued to ensure that your future SSL connections are not prone to man-in-the-middle interception.

For more information please go to:

https://www.us-cert.gov/ncas/alerts/TA14-098A

or

http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-0160.html