According to a recent article on The Register,

The attack is enabled by what the researchers described as a “severe vulnerability” in the OpenSSL innards that carry out authentication based on the RSA public key encryption algorithm. It resides in the so-called fixed window exponentiation algorithm of the open-source crypto library, which is used when errors arise. By triggering a single-bit error in a multiplication operation, the scientists were able to force OpenSSL to divulge 4 bits of the secret key.

Once they gathered about 8,800 malformed messages from the targeted device, they fed the data into an 81-machine cluster of 2.4 GHz Pentium-4 systems running a custom-designed algorithm…and were able to extract its 1024-bit private key in 104 hours.

The Register reports that an OpenSSL representative has confirmed that a patch is currently in development.

Yes. To convert an OpenSSL certificate to NanoSSL, simply convert the certificate from PEM to DER format by defining in your project __ENABLE_MOCANA_PEM_CONVERSION__; and then use the CA_MGMT_decodeCertificate() API to convert OpenSSL certificate to NanoSSL. To convert OpenSSL key to NanoSSL key, simply call: CA_MGMT_convertKeyDER() or CA_MGMT_convertKeyPEM() depending whether your key is stored as DER or PEM file. Note: PEM files are base64 encoded DER files.