On December 3, 2015, OpenSSL announced the discovery of four vulnerabilities [1].
Airlock WAF is affected by CVE-2015-3194. If client certificate authentication is enabled an attacker might be able to perform a denial of service attack.
Details of the other three vulnerabilities:
The Airlock team has published hotfixes for Airlock WAF 5.1.1, 5.2 and 5.3.1 to update OpenSSL to version 1.0.1q. The criticality of the hotfixes is low.