Konica Minolta Japan Investigating Several bizhub Multifunctionals for Heartbleed Vulnerability
Konica Minolta Business Solutions of Japan reports that it’s cleared most of its bizhub MFPs safe from “Heartbleed” OpenSSL vulnerability. To see a complete list of cleared products, visit the company here.
However, Konica Minolta reports that it’s still investigating several MFPs: the bizhub 4700P/4000P/3300P, bizhub 4020, and bizhub 3320. It also says that it released counter-measure products on April 19th for HDD TWAIN driver and Real Time Mode TWAIN driver.
Heartbleed is a security bug in the open-source OpenSSL cryptography library, which is widely used to implement the Internet’s Transport Layer Security (TLS) protocol. This vulnerability results from a missing bounds check in the handling of the Transport Layer Security (TLS) heartbeat extension, the heartbeat being behind the bug’s name. A fixed version of OpenSSL was released on April 7, 2014, at the same time as Heartbleed was publicly disclosed. At that time, some 17 percent (around half a million) of the Internet’s secure Web servers certified by trusted authorities were believed to be vulnerable to the attack, allowing theft of the servers’ private keys and users’ passwords.