OpenSSL Project “Heartbleed" Vulnerability Does *Not* Affect Salesforce

Last updated 2014-04-16 ·Reference W-XXXXXXX ·Reported By 15 users

Fixed

Summary
At salesforce.com, trust is our #1 value and we take the protection of our customers' data very seriously. On April 7, the OpenSSL Project released an update to address a vulnerability nicknamed “Heartbleed". Salesforce is not running the vulnerable version of OpenSSL and there is no impact to the Salesforce service.

Repro
None.

Workaround
None.

Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.