Yesterday, researchers disclosed a major vulnerability (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160 ) in the popular open source encryption library OpenSSL. It turns out that the reported coding defect was introduced into the OpenSSL software in late 2011. We have determined that some of our products that incorporated the latest releases of OpenSSL could be susceptible to this reported vulnerability.
We are assessing our products and services to further secure them, and are following all the recommended procedures. Patches will be delivered as needed and as soon as they become available. We will provide further guidance on steps to secure your systems as we identify them.
Please contact Barracuda technical support directly at +1 408 342 5300 if you have further questions or concerns.