What’s The Issue?
Earlier yesterday there was a public disclosure of an OpenSSL “high severity” vulnerability affecting specific versions of OpenSSL. You can read more about the threat here. This issue affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n and 1.0.1o.
Hosted Sites Are Not Affected
Our security team checked our servers immediately, and have verified that all of our client-facing servers are not affected by this vulnerability. That said, rest assured that your Shotgun site (<client>.shotgunstudio.com) remains safe and unaffected. We've also verified that the python interpreter distributed with Shotgun Desktop is unaffected.
If you would like any further information, please email firstname.lastname@example.org.