CVE-2019-11323

2019-05-09T14:29:00
ID CVE-2019-11323
Type cve
Reporter cve@mitre.org
Modified 2019-05-10T14:52:00

Description

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/ssl_sock.h error.