Every month the OpenSSL Library receives code in the form of pull
requests (PR) to GitHub. In June, 64 of those PRs were
merged
into the default branch of the repository thus becoming a part of the
OpenSSL Library code base. Some of those changes came from developers
paid by either the OpenSSL
Foundation or the OpenSSL
Corporation. Some of the changes
come from developers who work for another
company. And
some, ~40% so far in 2025, come from individuals.
Release Announcement for OpenSSL Library 3.5.1, 3.4.2, 3.3.4, 3.2.5, and 3.0.17
The OpenSSL Project team announces the release of new versions of our open-source toolkit for SSL/TLS.
CVEs fixed in 3.5.1:
CVE-2025-4575 - LOW - Fix x509 application adds trusted use instead of rejected use.
All other releases contain miscellaneous minor bug fixes. For details of the changes, refer to the release notes for versions 3.0, 3.2, 3.3, 3.4, and 3.5.
Specific notes on upgrading from previous versions are available in the OpenSSL Migration Guide.
OpenSSL Foundation is seeking a talented and motivated Software Engineer
(C Developer) to contribute to the development and maintenance of the
widely-used OpenSSL open-source cryptographic library.
If you’re reading this blog post, you probably don’t need us to tell you how essential, widespread, and important the OpenSSL Library is. While our open source model means that everyone is freely able to use these tools, it also means we here at the OpenSSL Foundation don’t actually know all the great stories of how these tools are being used.
We’re looking for real stories of how the OpenSSL Library benefits your end users.
The OpenSSL Conference 2025 is extending its Call for Papers (CFP) deadline to June 22, 2025.
We understand that the best proposals often come from teams deep in the trenches of real-world security work. You now have additional time to craft and submit the talk, panel, or workshop that challenges assumptions, advances cryptographic innovation, drives and shapes the future of secure communications.
Pictured here from left to right: Štefan Kremeň (Support Manager), Peter Gutmann (cryptlib), Hana Andersen (Marcom Manager), Shayne Jones (cryptlib), Kajal Sapkota (MarCom Specialist), Kateřina Míčová (Business Admin), Daniela Kellnerová (MarCom Specialist), Norbert Pócs (Software Engineer), Tomáš Vávra (Engineering & Standards Mgr.), Anton Arapov (Operations Manager), Tim Hudson (Corporation President), Matt Caswell (Foundation President), Tomáš Mráz (Foundation Public Support and Security Manager), James Bourne (FireDaemon Technologies), Jaroslav Řezník (Red Hat), David Hook (Bouncy Castle), Billy Bob Brumley (RIT)
From May 14–16, the OpenSSL Corporation hosted a face-to-face working session in Brno, Czech Republic. The meeting was designed to bring together participants from the OpenSSL Projects and convene in an in-person meeting of the Corporation’s Business Advisory Committee (BAC). The OpenSSL Foundation was invited to join on Wednesday and Thursday in the broader conversations with the OpenSSL Projects.
This was the first time these groups gathered in person in this configuration. The sessions served as an opportunity to strengthen working relationships, align on shared priorities, and focus on strategic coordination across the ecosystem.
The OpenSSL Corporation and the OpenSSL Foundation are launching the Distinguished Contributor Awards, a new programme formally recognising exceptional technical contributions to each OpenSSL Library release. These awards highlight individuals who drive critical advancements and demonstrate technical leadership in the evolution of the OpenSSL Library.
Dates: October 7–9, 2025
Location: Prague, Czech Republic
Submission Deadline: May 31, 2025
The OpenSSL Conference 2025 is accepting proposals for talks, panels, and workshops. This inaugural event will bring together developers, researchers, security engineers, compliance professionals, and policy experts working across open-source and commercial domains. While the OpenSSL Library remains central to modern cryptography, this conference is designed to support the broader community in building secure systems and advancing internet trust.
We are looking for speakers who can share real-world experiences, technical innovations, and practical insights that contribute to the field of security and cryptographic infrastructure.
The OpenSSL Corporation and the OpenSSL Foundation certify the results of the Technical Advisory Committee (TAC) elections. After a thorough nomination and voting process, the OpenSSL community has selected a group of distinguished individuals to provide guidance and advice to the OpenSSL Library.
