We are glad to announce the availability of VisualSVN Server 3.5.1 patch release that incorporates the upgrade to OpenSSL 1.0.2g and a number of other fixes.
For the complete list of changes, see the VisualSVN Server 3.5.1 changelog.
Comparing to the OpenSSL 1.0.2e that was used in the previous VisualSVN Server 3.5.x build, the OpenSSL 1.0.2g provides fixes for eight CVEs. Most of these vulnerabilities, including CVE-2016-0800 and CVE-2016-0701 that have high level of severity, do not affect VisualSVN Server installations. The vulnerability CVE-2016-0702 potentially affects up-to-date VisualSVN Server installations, but the risks are very low. For further details, please see the OpenSSL 1.0.2 Series Release Notes.
Upgrade to the VisualSVN Server 3.5.1 is recommended for all existing VisualSVN Server users. You can get the latest version of VisualSVN Server at the official download page.