A programming error in an open source security project introduces profound vulnerabilities in millions of computer systems.

http://www.technologyreview.com/Infotech/20801/?a=f