Update OpenSSL 1.0.1g

Yesterday, a security patch of OpenSSL 1.0.1g was issued, fixing a pretty critical vulnerability (refered to as CVE-2014-0160).

Once issued, the Clever Cloud support team immediately updated our service with it.

Who's affected?

If you have SSL enabled on Clever Cloud, you have to read the following.

What to do?

Clever Cloud is not vulnerable to this security breach anymore, but we urge you to regenerate SSL keys and re-issue your certificate. Certificate regeneration is not a sufficient solution to protect you completely, you also have to regenerate a new SSL key. If you have any questions related to this security update for your apps hosted on Clever Cloud, feel free to send us an e-mail, our team will keep you informed of future developments.

Which versions of OpenSSL are vulnerable?

  • OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable
  • OpenSSL 1.0.1g is NOT vulnerable
  • OpenSSL 1.0.0 branch is NOT vulnerable
  • OpenSSL 0.9.8 branch is NOT vulnerable

Blog

À lire également

UP Program: Discover the 7 startups of the third cohort

Clever Cloud’s UP Program supports young tech companies that are transforming key sectors through digital innovation.
Company

Clever Cloud joins the Fabrique IA Territoriale in Pays de la Loire

Clever Cloud is participating in the Fabrique IA Territoriale (“Territorial AI Factory”) initiated by Gigalis to support public sector actors with a sovereign and secure cloud, relying on interoperable, reliable open source technologies tailored to territorial needs.
Company Press

Clever Cloud recognized by Gartner in its 2025 Magic Quadrant for Cloud-Native Application Platforms

Clever Cloud, a European Platform-as-a-Service (PaaS) provider, is proud to announce that it has been recognized as an Honorable Mention in Gartner’s latest Magic Quadrant for Cloud-Native Application Platforms, published on August 4, 2025.
Company Press