OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols.
Multiple vulnerabilities have been discovered in OpenSSL. Please review the referenced CVE identifiers for details.
A remote attacker could cause a Denial of Service condition, obtain private keying material, or gain access to sensitive information.
There is no known workaround at this time.
All OpenSSL users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-libs/openssl-1.0.2o"