This advisory is regarding a recently discovered, widely publicized, and widespread vulnerability in versions of OpenSSL calledHeartbleed.
At this time we are able to report that SUNY and SUNY Fredonia public facing systems using SUNY Fredonia eServicescredentials (userid and password), as well as Your Connection, Banner, and vendor applications used by SUNYFredonia, were either not affected by the vulnerability or if affected have been patched and SSL certificates replaced. There is no indication that SUNY Fredonia eServices passwords used to log into SUNY or SUNY Fredonia systems were compromised. However, this presents an opportunity for you to consider the following:
For more information about OpenSSL and Heartbleed please see the following: