I'm guessing it'll be the same vendors that never upgraded for the heartbleed vulnerability.
Not a member of The Register? Create a new account here.
Remember me on this computer? Post anonymously?