HTC is working on a Heartbleed fix for the HTC EVO 4G LTE
Even though HTC confirmed last week that it was still working on the Android 4.3 update for the HTC EVO 4G LTE, it appears that a maintenance update may come at some point before that. According to HTC’s software update page (linked below), the Taiwanese manufacturer is currently working on a Heartbleed fix for the EVO 4G LTE, along with the T-Mobile HTC One S and the AT&T HTC One X+. The update will still be based on Android 4.1.1, and all but the One X+ is in the certification phase (AT&T’s One X+ is still in the integration phase).
Additionally, the Boost Mobile HTC One SV will also be patched, but will also be updated to run Android 4.2.2 and Sense 5. This update is being pushed out to consumers right now.
According to Wikipedia:
Heartbleed is a security bug in the open-source OpenSSL cryptography library, which is widely used to implement the Internet’s Transport Layer Security (TLS) protocol. This vulnerability, classified as a buffer over-read, results from a missing bounds check in the handling of the Transport Layer Security (TLS) heartbeat extension, the heartbeat being behind the bug’s name.
It’s actually a pretty alarming bug, but luckily it’s being patched on our mobile devices almost immediately.[HTC] Thanks, William!