Major OpenSSL Security Issue Found (and Fixed)
tearmeapart writes "A major security issue has been found in all OpenSSL packages. You probably want to download your preferred OpenSSL package as soon as possible. Changes to the CVS repository are detailed on the OpenSSL timeline."
From the post body, I'd be thinking the security problem is... OpenSSL still uses CVS.
I mean really, if there's code corruption or something malicious going on in the repository, you'd never know about it.
Wonder what the public key field is for?