OpenSSL ssleay32.dll, libeay32.dll vulnerability

Bjarne_Havnen · June 14, 2026, 3:18pm

This case below says libeay32.dll and ssleay32.dll that are in my application folder have a vulnerability. I do not remember which purchase added this to my build, but could be nettalk? If it processes PKCS#7, S/MIME, signed files, certificates, or XML signatures, then I should take actions, but if I only use it for TLS, then it isn’t necessary.

Problem is: I do not know what it is used for. We have enabled certificate use at some point, using CARootFile, but how this is validated, I do not know.

Anyone want to enlighten me?

Solution

https://openssl-library.org/news/secadv/20260609.txt

Bruce · June 14, 2026, 6:31pm

Yes, probably NetTalk. Which build are you using?

Its unlikely that Clarion programs are using thd affected functions, but you can update your OpenSSL Dlls to be sure.

Official NetTalk updates with the new DLLs will follow this week.