2015/01/09 10:45 AM PST - Update

The issues described in the OpenSSL security advisory posted at https://www.openssl.org/news/secadv_20150108.txt do not affect AWS services or our services have mitigations in place.




2015/01/08 1:30 PM PST

We are aware of the OpenSSL advisory posted at https://www.openssl.org/news/secadv_20150108.txt. The OpenSSL project team has released OpenSSL Versions 1.0.1k, 1.0.0p and 0.9.8zd that fixed a number of bugs.

We are currently reviewing AWS Services and will update this bulletin within 48 hours.