Although I also just posted in the heartbleed thread in the Applications forum, I think this important enough to re-post here.
If you're in the habit of running "zypper up" you <will not> patch your openssl if you already have openssl v1.0.1e installed (and if you regularly run zypper up this would be the case).
You must also
run the following to capture the heartbeat patch
The only time "zypper patch" might be avoided is if you're installing openssl when it didn't exist before or you haven't updated your system for months.
TSU
If you're in the habit of running "zypper up" you <will not> patch your openssl if you already have openssl v1.0.1e installed (and if you regularly run zypper up this would be the case).
You must also
run the following to capture the heartbeat patch
Code:
zypper patchTSU