Hey guys, looks like OpenSSL has a bad case of teh vulnz.
A bug that's been sitting around for two years is allowing memory to be leaked through SSL heartbeats, thanks to a missing bounds check. This means private keys can be dumped.
Everyone is urged to install a patched OpenSSL, and be sure to get any programs that statically link OpenSSL fixed as well. Check with your OS distributor for more info. It is also ESSENTIAL that you rekey and get new certs! Assume you have been pwnd, because there's no way to know you haven't!
More info at http://heartbleed.com
Analysis of the bug and patch http://blog.existentialize.com/diagnosis-of-the-openssl-heartbleed-bug.html
Check your site with http://filippo.io/Heartbleed/
/// Happy patching! :) ///