Jul 18, 22:19 PDT
Resolved – We have deployed a configuration change that addresses CVE-2016-5385. The change blocks attempts to exploit the vulnerability called “httpoxy”  by striping “proxy” headers at our edge. We recommend customers apply updates appropriate to their environments as soon as possible even though this change provides protection.
 – https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5385
 – https://httpoxy.org, https://www.kb.cert.org/vuls/id/797896