Is RTMPS affected by the Heartbleed bug?

Report · Apr 11, 2014

Or any component for using RTMPS? For example: Adobe Media Server, Flash Player (on Windows, Mac, etc.)?

Please let me know.

Thanks.

Report · Apr 15, 2014

OpenSSL version used by AMS for RTMPS is not affected by HeartBleed vulnerability.

Report · Apr 16, 2014

Thanks for your reply. That was helpful. I also want to ask if there is any specific version of AMS that is vulnerable to the Heartbleed bug and if it should be upgraded?

Report · Apr 17, 2014

This holds true for all shipping versions of AMS

Report · Sep 19, 2014

Hi Namita,

I just found this thread : OpenSSL vulnerability 6 Aug 2014 from August and it says AMS 5.0.6 has the fix for the bug. So other versions 5.0.1 through 5.0.5 are affected by the bug?

Could you please clarify?

Thanks a bunch.

Report · Sep 21, 2014

Yes

Report · Sep 23, 2014

Thanks a lot for confirming hparmar. Is there a reason Adobe delayed the release of the patch?

Report · Sep 26, 2014

if openssl releases a patch we try our best to incorporate it in next possible release of AMS.

Even otherwise, openssl can be compiled separately and dropped into AMS installation...Adone encourages its customers to do so and we have documented the steps required to compile openssl for AMS and made them available on internet docs.Just google for "Adobe media server openssl compile".

Report · Sep 26, 2014

Sharing the link.

Adobe Community

Is RTMPS affected by the Heartbleed bug?

1 Correct answer