Just noticed this on OS4Depot today:
libopenssl.lha dev/lib/mis 1.0.1g 10Mb 10 Apr 14 4.0 8 ยค Libopenssl - The Open Source toolkit for SSL/TLS
2014-04-10 - Updated to 1.0.1g.
Doh. And the security experts say you should be on the latest versions..... It they were behind the times they would have been safe.
Don't let Commodore John get wind of this...
