Team Boundary has reviewed our services in light of the recently discovered OpenSSL ‘Heartbleed’ vulnerability (CVE-2014-0160).
The Boundary collector uses Bouncy Castle as its ssl implementation and is therefore not vulnerable to the OpenSSL Heartbleed bug. No update is needed by our customers. Customer ingress points other than the collectors (such as api.boundary.com and app.boundary.com) were scanned last night and were confirmed as not vulnerable.
Please send any questions or concerns to firstname.lastname@example.org. [ 10:00pm PDT -- paul ]