6 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-49214
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the...
OESA-2024-2273 haproxy security update
HAProxy is a free, very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic web sites and powers quite a number of the world's most visited ones. Security Fixes: QUIC in HAProxy...
haproxy-3.0.5+git0.8e879a52e-2.1 on GA media (moderate)
haproxy-3.0.5+git0.8e879a52e-2.1 on GA media Announcement ID: openSUSE-SU-2024:14402-1 Rating: moderate Cross-References: CVE-2024-49214 CVSS scores: CVE-2024-49214 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerabili...
CVE-2024-49214 vulnerabilities
Vulnerabilities for packages: haproxy...
AZL-50333 CVE-2024-49214 affecting package haproxy for versions less than 2.4.24-1
QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the IP allow/block list functionality...
CVE-2024-49214 affecting package haproxy for versions less than 2.4.24-1
CVE-2024-49214 affecting package haproxy for versions less than 2.4.24-1. A patched version of the package is available...