Forum Discussion
Sven_Leupold_85
Cirrus
This answers some questions: http://support.f5.com/kb/en-us/solutions/public/13000/100/sol13163.html
TMM is not using openssl for SSL enabled virtual servers except you configure COMPAT ciphers on 11.5.x. The risk on the management traffic (configuration/iControl/big3d) is low as long as your management segment is separated.
But, still, F5 should provide an official statement that their SSL implementation is not affected.
Michael_Kenned1
Jun 05, 2014Nimbostratus
This tool released by redhat is indicating that my F5 sites (which don't use COMPAT ciphers) are affected: https://access.redhat.com/labs/ccsinjectiontest/
I'm eager to hear F5's official response.