(RHSA-2018:2882) Important: rh-haproxy18-haproxy security update

2018-10-08T13:39:55
ID RHSA-2018:2882
Type redhat
Reporter RedHat
Modified 2018-10-08T13:42:32

Description

HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments.

Security Fix(es):

  • haproxy: Out-of-bounds read in HPACK decoder (CVE-2018-14645)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Red Hat would like to thank Tim Düsterhus and Willy Tarreau for reporting this issue.