OpenSSL was vulnerable since end of 2011. Fixed mid 2014.
And it's one of the most popular and commonly used open source technologies.