A rather severe exploit was found in OpenSSL on April 7th known as the heartbleed bug. The bug allows leaking of the private keys stored on a server running OpenSSL. This bug affects all stable releases of OpenSSL currently in portage, along with 1.0.2_beta1. The latest version of OpenSSL to have a fix for this bug is 1.0.1g. More information can be found at http://heartbleed.com/
*** This bug has been marked as a duplicate of bug 507074 ***