As you may be aware a number of security vulnerabilities have just been
announced regarding OpenSSL.

Several of these potentially impact Squid with Denial of Service and
connection failure side effects when using HTTPS or the SSL-Bump feature

All users of Squid HTTPS and SSL features are advised to restart Squid
after upgrading their OpenSSL library to a fixed version.

There will be no direct Squid advisory regarding this since the
vulnerability is in OpenSSL itself, not Squid.

Amos Jeffries
Squid Software Foundation
squid-announce mailing list

Reply via email to