A critical bug has been found in libssl library which may allow the hackers
to user names and passwords, instant messages, emails and business critical
documents and communication.
Read more about this bug @ https://heartbleed.com/
And to know how could this happen -
http://blog.existentialize.com/diagnosis-of-the-openssl-heartbleed-bug.html
So consider updating libSSL to version 1.0.1g, cf: CVE-2014-0160
--
Siji Sunny