The Heartbleed Vulnerability and Loupe

A software vulnerability dubbed Heartbleed has made a lot of press this week - and with good reason. It likely affects more Internet servers than any other issue found before. What does it mean for us at Gibraltar Software? After reviewing a range of scenarios we’re glad to report that none of the software we distribute (VistaDB or Loupe) or our infrastructure are subject to this vulnerability.

Since our internal systems are nearly all Windows-based our exposure to this particular issue was likely to be small but we do use Linux systems in a few places - notably our firewalls and load balancers. We’ve confirmed with the vendors of these products that our particular software versions aren’t subject to the vulnerability. We’ve also reviewed our publically-accessible internal systems and confirmed that none of them use software affected by this issue either.

That said, we’d encourage you to assess your own internal systems. When you sit back and consider that you could be exposed by any application that implements SSL in your environment that list of systems can be considerable.