You all are probably already highly aware of this, but just to be sure:
There's a pre-announcement of something bad:
The OpenSSL project team would like to announce the forthcoming
release of OpenSSL versions 1.0.2f, 1.0.1r.
These releases will be made available on 28th January between
approx. 1pm and 5pm (UTC). They will fix two security defects, one
of "high" severity affecting 1.0.2 releases, and one "low"
affecting all releases.
Please see the following page for further details of severity levels:
(Thanks sgallagh for alerting me!)
Fedora Project Leader