Three specific vulnerabilities have been discovered in the OpenSSL libraries. Two of these could allow a Denial of Service attack, the third may result in an attacker being able to execute malicious code under certain conditions. All versions of OpenSSL up to and including 0.9.6j and 0.9.7b and all versions of SSLeay are affected. (SSLeay is no longer maintained.) Get more informations over here