Cloudflare Security Advisory25 Feb 2017
It’s that time again, where announcements of a potentially catastrophic security issue are released across the world.
This time, the one and only Cloudflare have been affected by a buffer overflow bug allowing certain sites to have data leaked.
More information on the issue is available from Cloudflare directly at https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
Anyone that uses the Cloudflare service should check to ensure that their site does not use the email obfuscation, server side excludes, or automatic https rewrite features available on Cloudflare.
If you are affected by this, I would advise that passwords and other authentication information such as API tokens be changed as a precaution due to the potential that something may have been leaked.
Cloudflare have already resolved the issue on their end so exploitation is no longer available.