Cloudbleed is a security bug discovered on February 17, 2017 affecting Cloudflare's reverse proxies, which caused their edge servers to run past the end of a buffer and return memory that contained private information such as HTTP cookies, authentication tokens, HTTP POST bodies, and other sensitive data. And some of that data had been cached by search engines. As a result, data from Cloudflare customers was leaked out and went to any other Cloudflare customers that happened to be in the server's memory on that particular moment. Some of this data was cached by search engines. This bug was discovered by Tavis Ormandy from Google’s Project Zero. He was seeing corrupted web pages being returned by some HTTP requests run through Cloudflare. The bug was serious because the leaked memory could contain private information and because it had been cached by search engines. Cloudflare have also not discovered any evidence of ...