Curious name for a bug, CVE-2014-0160 is the official reference to this bug. CVE stands for ‘Common Vulnerabilities and Exposures’. Being leaked are private keys - X.509 certificates can be bypassed and all past communications can be decrypted.. if that communication was stored. Exploitation of this bug leaves no traces of anything abnormal happening to the logs! Fixed OpenSSL libraries are available however, it’s probably a good idea to implement ‘perfect forward secrecy’ so that no past communications are compromised.