I've read multiple articles saying the openSSL bug should not affect my phone. However ever security app I download to test for the bug says I have open SSL version 1.0.1c and the behavior is enabled. Now, i understand that android apps can be packaged with their own version of OpenSSL, but I'm not checking the apps. Lockout app & Blue Box both save I have the bug & it's enabled system wide. Annoyed with HTC customer support because they keep saying i don't have it. Perhaps I'm missing something, but why do multiple secruity apps say I'm vulnerable. Any suggestions would help.