News:

Support the VirtueMart project and become a member

Main Menu

VM1, VM2, VM3 websites are not affected by the Poodle security issue

Started by alatak, November 26, 2014, 14:58:28 PM

Previous topic - Next topic

alatak

Hello

Due to the recent POODLE vulnerability discovery, payment processors have begun disallowing the use of SSL v3.

PayPal has officially announced that they will discontinue support for SSL 3.0 on Wednesday, December 3, 2014: https://devblog.paypal.com/poodle-ssl-3-0-vulnerability/

The issue appears when the code forces the use the SSL version 3 in curl functions.

None of our payment plugins (i.e. PayPal, authorize, heidelpay, , klarna,  realex, and sofort) uses this option, neither in VM1, VM2 or VM3.

The most important time of the year for e-websites is fast approaching, and we wanted to reassure all our merchants.