Please also note that although upgrading (and reloading haproxy) will stop any new keys from being leaked, this bug has been open for two years and it is possible your key was already leaked before.
Best course of action is to revoke current keys and reissue. On Tue, 2014-04-08 at 09:41 +0200, Lukas Tribus wrote: > Hi list, > > anyone running openssl 1.0.1 is likely affected by the quite serious TLS > heartbeat read overrun bug (CVE-2014-0160) in OpenSSL: > > https://www.openssl.org/news/secadv_20140407.txt > http://heartbleed.com/ > > > Upgrading to 1.0.1g fixes this issue, 0.9.8 and 1.0.0 are unaffected. > > > > > Regards, > > Lukas
