[jitsi-dev] Heartbleed and Jitsi?


#1

Hello.

Can anyone tell me if Jitsi has been using any version of OpenSSL libraries that will be vulnerable to heartbleed?

If there was, what is safe version of Jitsi to use?

thanks you for help.


#2

Can anyone tell me if Jitsi has been using any version of OpenSSL
libraries that will be vulnerable to heartbleed?

No, it doesn't use OpenSSL.

If there was, what is safe version of Jitsi to use?

All versions are safe as we use the SSL/TLS stack from Java (which is not
affected). In any case you'd probably want to use the newest stable.

thanks you for help.

Ingo