4D is using a newer version of OpenSSL and not hurt by the ‘Heartbleeding bug’
Thomas Maul -VP of Strategy, 4D Product Line- told the community 4D v13 and 4D v14 are save. There were no informations given for 4D v12 and 4D v11:
The current releases of 4D, version 14 and 13, are using OpenSSL but not one of the critical versions, so they are not vulnerable.
Normally, SSL is not used in the database connections for 4D. Sending emails from 4D SSL encrypted are not a victim of this bug. The build-in 4D WebServer uses a bug free OpenSSL library. – Relax! German readers can check with Heise Online for test suites.