<header><h2>Vulnerabilities<h2></header>
<div class="entry-content">
<p>
- If you think you have found a security bug in OpenSSL,
- please send mail to <a
- href="mailto:openssl-security@openssl.org">openssl-security@openssl.org</a>.
- If you want to encrypt the mail, you can use our
- team's <a href="pgpkey.html">PGP Key</a>. Or you can
- send mail to one or more individual <a
- href="/community/omc.html">OMC Members</a>,
- encrypted or plaintext.
- We will work with you to assess and fix the flaw,
- as discussed in our
- <a href="/policies/secpolicy.html">Security Policy</a>.
+ If you think you have found a security bug in OpenSSL,
+ please <a href="/community/#securityreports">report it to us</a>.
</p>
+ <h2>Note: Support for OpenSSL 0.9.8 ended on 31st December 2015 and
+ is no longer receiving security updates</h2>
<!--#include virtual="vulnerabilities-0.9.8.inc" -->
</p>
</div>