openssl, the library virtually everyone uses to make https work, had a massive glaring flaw that allowed an attacker to examine the server’s ram

which is, like, bad

since private keys and stuff tend to be in ram