Last Modified: Jul 12, 2023
Known Affected Versions:
13.1.0, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 13.1.1, 14.0.0, 220.127.116.11, 18.104.22.168
14.1.0, 22.214.171.124, 126.96.36.199
Opened: Jun 26, 2018 Severity: 2-Critical
When OCSP Stapling is enabled on a client SSL profile, certain uncommon operations might result in a tmm timer queue getting into a loop, which results in tmm being aborted by sod. tmm restart
tmm restarts. Traffic interrupted while tmm restarts.
-- There are SSL handshakes waiting for an OCSP response, and one of the following: + There is a CMP transition. + There are changes made to the OCSP object.
There is no workaround other than disabling OCSP stapling.
The timer issue has been corrected.