공격자가 대상 서버의 메모리 중 최대 64 KiB를 읽어 올 수 있다는 것.
http://heartbleed.com/
테스트 대행 사이트 (믿어도 되나...)
http://filippo.io/Heartbleed/
패치
http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7e840163c06c7692b796a93e3fa85a93136adbb2;hp=a4896327e3e8c692438f0a85306f207b84b767f0
Vulnerability Note VU#720951
http://www.kb.cert.org/vuls/id/720951
exploit 코드
http://www.exploit-db.com/exploits/32745/
Q&A 글
http://security.stackexchange.com/questions/55116/how-exactly-does-the-openssl-tls-heartbeat-heartbleed-exploit-work
설명
http://blog.existentialize.com/diagnosis-of-the-openssl-heartbleed-bug.html
설명
http://blog.cryptographyengineering.com/2014/04/attack-of-week-openssl-heartbleed.html
