Oh, sh*t.  Several severe vulnerabilities were discovered in OpenSSL's ASN.1 parser code.  These bugs are really serious and widely spread.  Update Now!  Beside pathcing your own programs that use OpenSSL, don't forget about program you didn't write.  I'll have to scan my system to take stock of which programs I have to update.  Sheesh.

• OpenSSL Security Advisory
• Feds, Industry, Battle the Biggest Bug – SecurityFocus
• Brits pound OpenSSL bugs – The Register

While the hole in OpenSSL might be patched, vulnerabilities in other applications using ASN.1 are likely to still exist and may come to light in the days to come.

Pass this news on to others so they can cover their ass too.