openssl version

[bparanj]

I noticed the server has the openssl version 1.0.1. Do I need to upgrade it manually to

1.0.1g ? I looked at the old archive posts where Kevin said Apache
will handle the SSL so there is no need to worry. Is 1.0.1 version 
ok to generate a CSR request for buying SSL certificate?
Just looking for confirmation. TIA.

[bparanj]

The archive post on Heartbleed vulnerability answers my questions. I was confused by the output of : openssl version. It was showing 1.0.1 even after upgrade.