BugZero | F5 BugID 752079 - In SSL forward proxy, forged untrusted server cert...

F5 - Defect ID: 752079

In SSL forward proxy, forged untrusted server certs are no longer cached.

F5 - Defect ID: 752079

In SSL forward proxy, forged untrusted server certs are no longer cached.

Last updated on 5/29/2024

Overall: 7.57.5

Severity: 7.37.3

Community: 4.14.1

Lifecycle: 7.97.9

What is the BugZero Risk Score?

Vendor details

Priority: 3-Major
Status: Verified
Impact Category: Local Traffic Manager

Overall: 7.57.5

Severity: 7.37.3

Community: 4.14.1

Lifecycle: 7.97.9

What is the BugZero Risk Score?

Vendor details

Priority: 3-Major
Status: Verified
Impact Category: Local Traffic Manager

Symptoms

Impact

You might notice a performance impact compared with previous releases.

Conditions

SSL forward proxy is enabled and server cert is untrusted.

Workaround

None.

Fix Information

There is a behavior change: the system does not cache forged server certs if the cert is not trusted.

Behavior Change

Previously, SSL forward proxy cached forged server certs on the client side even if the server cert was untrusted. Now, SSL forward proxy does not cache the forged cert if the server cert is untrusted. As a result, you might notice slower performance in this release under these conditions.

Original Vendor Announcement

No bugs this month

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

F5 - Defect ID: 752079

In SSL forward proxy, forged untrusted server certs are no longer cached.

F5 - Defect ID: 752079

In SSL forward proxy, forged untrusted server certs are no longer cached.

Last updated on 5/29/2024

Vendor details

Vendor details

Description

Symptoms

Impact

Conditions

Workaround

Fix Information

Behavior Change

Links

Top F5 defects by risk score

Ready to prevent the next vendor outage?