SSL Fix?

Question

Is there a recommended fix for this?&nbsp;
http://www.zdnet.com/openssl-fixes-another-severe-vulnerability-7000030253/&nbsp;

sven_leupold_85 · Answer

This answers some questions: http://support.f5.com/kb/en-us/solutions/public/13000/100/sol13163.html&nbsp;
TMM is not using openssl for SSL enabled virtual servers except you configure COMPAT ciphers on 11.5.x. The risk on the management traffic (configuration/iControl/big3d) is low as long as your management segment is separated.&nbsp;
But, still, F5 should provide an official statement that their SSL implementation is not affected. &nbsp;

ericc01_137807 · Answer

There are a few threads open on this today, but I recommend reviewing https://devcentral.f5.com/questions/openssl-security-advisory-05-jun-2014 as it has the most technical details so far. &nbsp;
I also recommend looking directly at the vulnerability release from OpenSSL: https://www.openssl.org/news/secadv_20140605.txt for full details of items affected. &nbsp;

Forum Discussion

SSL Fix?

2 Replies

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Configuration Assistance: Configure Email Alerts for HA Failover Events and Device Offline

F5 BIG-IP i11000 stuck at B7 – cannot interrupt boot / ESC not working

Can one create one virtual server with two pool members with multiple services running on it?

AWS F5_OWASP Managed Rule Blocking requests

Maintenance page / local website that includes subfolders

Related Content

BIG-IP methods to Fix the “421 Misdirected Request” Error

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

FIX Message Response

SSL Orchestrator Service Extensions: DoH Guardian

FIX Made Easy With BIG-IPs FIX Profile

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS