I hope I am addressing this question to the right forum.
We have many customers who have a concern regarding this advisory. It refers to OpenSSL 0.9.8 being the affected version and 0.9.8j being the version that contains the patch for the vulnerability.
We have customers running versions 4.0.19 and 4.1.1c.
My question is, are these customers at risk? If so, when will a release be made available to rectify this?