I use a password manager (not sure if I can say it’s name here) and it tells me what websites certificates have been compromised by the heartbleed bug, and what websites have fixed this bug. So it seems that Avast haven’t fixed it yet, is that true? and if it is, when is the new certificate going to be done?
I assume you are talking about LastPass? If so then it shows “Wait” as advice for Avast.com.
What is it exactly you want avast! to fix? Their site is safe from that issue. You can test it using this:
https://sslanalyzer.comodoca.com/heartbleed.html
Also see:
Quote: “AVAST’s website is safe from the Heartbleed threat.”