8 matches found
Fedora 28 : haproxy (2018-941d094624)
Update to 1.8.12 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
openSUSE: Security Advisory for haproxy (openSUSE-SU-2018:3324-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : haproxy (openSUSE-2018-1229)
This update for haproxy to version 1.8.14 fixes the following issues : These security issues were fixed : - CVE-2018-14645: A flaw was discovered in the HPACK decoder what caused an out-of-bounds read in hpackvalididx that resulted in a remote crash and denial of service bsc1108683 -...
Security update for haproxy (important)
This update for haproxy to version 1.8.14 fixes the following issues: These security issues were fixed: - CVE-2018-14645: A flaw was discovered in the HPACK decoder what caused an out-of-bounds read in hpackvalididx that resulted in a remote crash and denial of service bsc1108683 - CVE-2018-11469...
SUSE-SU-2018:3249-1 Security update for haproxy
This update for haproxy to version 1.8.14 fixes the following issues: These security issues were fixed: - CVE-2018-14645: A flaw was discovered in the HPACK decoder what caused an out-of-bounds read in hpackvalididx that resulted in a remote crash and denial of service bsc1108683 - CVE-2018-11469...
Security Bulletin: A security vulnerability has been identified in HAProxy shipped with Data Science Experience Local
Summary HAProxy is shipped as a component of Data Science Experience Local. Information about a security vulnerability affecting HAProxy has been published in a security bulletin. Vulnerability Details Please consult the security bulletins: CVE-2018-10184, CVE-2018-11469 for vulnerability details...
CVE-2018-11469
Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 if cache enabled allows attackers to achieve information disclosure via an unauthenticated remote request, related to the protohttp.c checkrequestforcacheability function...
CVE-2018-11469
CVE-2018-11469 affects HAProxy 1.8.x (1.8.0–1.8.9 with caching enabled) where incorrect caching of responses including an Authorization header can disclose information via unauthenticated remote requests. Root cause cited: proto_http.c check_request_for_cacheability. Several connected advisories ...