The fix was developed by the BoringSSL project. The fix affects versions 1.0.1.1 and 1.2.2c. The bug affects OpenSSL 1.1n/1.2d/1.1o users should upgrade to. 1o.0 and 0.9.0. There will be no further updates for those particular versions in 2016 and beyond. The clock is ticking, get a move on Graham Cluley on Twitter to read more content we post.”]
Source: https://grahamcluley.com/openssl-vulnerability-revealed/