I know that it is obviously more productive to target servers and therefore individual devices are unlikely to be attacked. All the same, devices running 4.1.1 (and therefore any stock-based ROM) are vulnerable to this flaw.
Is there a known way to update the OpenSSL libraries in a stock ROM with secured versions? Otherwise, it would appear that Huawei have slated 10-5-14 as a release date for a fixed B197 stock ROM. Can those with dev experience clarify if it will be possible to replace OpenSSL with, say a CWM-flashable zip, on existing ROMs, using the version from the new stock ROM, once it is released?