Just two months after Heartbleed, a new bug in OpenSSL, the widely used encryption protocol, has been discovered. But this bug was exploitable for far longer.