See https://www.openssl.org/news/secadv/20170216.txt
9.411 uses OpenSSL 1.0.1k, support for this version ends 2016/12/31. There is no info, if this old version is affected. Does anyone has an official statement from Sophos?
Regards
Manuel
This thread was automatically locked due to age.