BlackBerry confirms its devices are affected by OpenSSL ‘FREAK’ Vulnerability – fix on the way

BlackBerry has confirmed that its devices are affected by an OpenSSL “FREAK” Vulnerability. It assures its customers that a fix is on the way.

Blackberry-Logo

Here is a list of BlackBerry software affected by the vulnerability:

Affected Software Affected Versions
BlackBerry 10 OS earlier than version 10.3.1.1779 (fix available)
BlackBerry 7.1 OS and earlier (all versions)
BES12 (all versions)
BES10 (all versions)
BES12 Client (iOS) (all versions)
Secure Work Space for BES10/BES12 (Android 4.0.4) (all versions)
Secure Work Space for BES10/BES12 (Android 4.4) (all versions)
Work Space Manager for BES10/BES12 (Android) (all versions)
Work Browser for BES10/BES12 (iOS) (all versions)
Work Connect for BES10/BES12 (iOS) (all versions)
BlackBerry Blend for BlackBerry 10, Android, iOS, Windows and Mac (all versions)
BlackBerry Link for Windows and Mac (all versions)
BBM on BlackBerry 10 OS all versions running on BlackBerry 10 OS earlier than 10.3.1.1767 (fix available)
BBM on Windows Phone earlier than version 2.0.0.25 (fix available)
BBM on Android earlier than version 2.7.0.6 (fix available)
BBM on iOS earlier than version 2.7.0.32 (fix available)
BBM Protected on BlackBerry 10 all versions running on BlackBerry 10 OS earlier than 10.3.1.1767 (fix available)
BBM Protected on BlackBerry OS (all versions)
BBM Protected on Android earlier than version 2.7.0.6 (fix available)
BBM Protected on iOS earlier than version 2.7.0.32 (fix available)
BBM Meetings for BlackBerry 10 all versions running on BlackBerry 10 OS earlier than 10.3.1.1767 (fix available)
BBM Meetings for Android, iOS, Windows and Mac (all versions)

 

BlackBerry users affected by the vulnerability include:

  • BlackBerry smartphone users
  • BBM for iOS, Android, and Windows Phone users
  • BlackBerry Blend users
  • BlackBerry Link users
  • Secure Work Space for iOS and Android users
  • IT administrators who deploy BlackBerry smartphones, BES12, BES10, BES5, or Secure Work Space for iOS or Android in an enterprise

Unaffected software:

Non-Affected Software Non-Affected or Fixed Versions
BlackBerry 10 OS version 10.3.1.1779 and later
BES 5 (all versions unaffected)
BlackBerry Universal Device Service (all versions unaffected)
BES12 Client (Windows Phone) (all versions unaffected)
BES12 Client (Android) (all versions unaffected)
BBM on BlackBerry 10 OS all versions running on BlackBerry 10 OS version 10.3.1.1767 and later
BBM on Windows Phone version 2.0.0.25 and later
BBM on Android version 2.7.0.6 and later
BBM on iOS version 2.7.0.32 and later
BBM Protected on BlackBerry 10 all versions running on BlackBerry 10 OS version 10.3.1.1767 and later
BBM Protected on Android version 2.7.0.6 and later
BBM Protected on iOS version 2.7.0.32 and later
BBM Meetings on BlackBerry 10 all versions running on BlackBerry 10 OS version 10.3.1.1767 and later

 

Although the fix is yet to be available, BlackBerry says, “This security notice addresses the OpenSSL “FREAK” vulnerability that was disclosed on March 3, 2015. BlackBerry® is diligently working to investigate the vulnerability and to determine how best to mitigate customer risk. Investigations are still ongoing, but confirm that BlackBerry products are impacted by this vulnerability. We will update this security notice as new information and fixes become available.”

Keep it here at Phones LTD for further updates.

Leave a Reply

Your email address will not be published. Required fields are marked *