Photon OS 1.0: Haproxy PHSA-2019-1.0-0249

An update of the haproxy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0249. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2019-0249

Updates of 'tcpdump', 'haproxy', 'redis', 'dbus' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-0026

Updates of 'expat', 'postgresql', 'u-boot', 'grub2', 'haproxy', 'linux-esx', 'zeromq', 'linux', 'mysql', 'linux- secure', 'linux-aws', 'binutils', 'libssh2' packages of Photon OS have been released...

Denial Of Service (DoS)

mastercactapus proxyprotocol is vulnerable to denial of service attacks. Remote attackers are able to send a specifically crafted HAProxy PROXY v2 request with truncated source/destination address data to the server causing a system crash...

CVE-2019-14243

headerv2.go in mastercactapus proxyprotocol before 0.0.2, as used in the mastercactapus caddy-proxyprotocol plugin through 0.0.2 for Caddy, allows remote attackers to cause a denial of service webserver panic and daemon crash via a crafted HAProxy PROXY v2 request with truncated source/destinatio...

CVE-2019-14243

headerv2.go in mastercactapus proxyprotocol before 0.0.2, as used in the mastercactapus caddy-proxyprotocol plugin through 0.0.2 for Caddy, allows remote attackers to cause a denial of service webserver panic and daemon crash via a crafted HAProxy PROXY v2 request with truncated source/destinatio...

Design/Logic Flaw

headerv2.go in mastercactapus proxyprotocol before 0.0.2, as used in the mastercactapus caddy-proxyprotocol plugin through 0.0.2 for Caddy, allows remote attackers to cause a denial of service webserver panic and daemon crash via a crafted HAProxy PROXY v2 request with truncated source/destinatio...

CVE-2019-14243

CVE-2019-14243 affects the mastercactapus proxyprotocol plugin for Caddy (headerv2.go in the proxyprotocol code path) prior to version 0.0.2. The flaw allows remote attackers to trigger a denial of service (webserver panic and daemon crash) by sending a crafted HAProxy PROXY v2 request with trunc...

CVE-2019-14243

headerv2.go in mastercactapus proxyprotocol before 0.0.2, as used in the mastercactapus caddy-proxyprotocol plugin through 0.0.2 for Caddy, allows remote attackers to cause a denial of service webserver panic and daemon crash via a crafted HAProxy PROXY v2 request with truncated source/destinatio...

CVE-2019-14241

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

CVE-2019-14241

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

Design/Logic Flaw

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

CVE-2019-14241

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

CVE-2019-14241

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

CVE-2019-14241

HAProxy through 2.0.2 allows attackers to cause a denial of service hapanic via vectors related to htxmanageclientsidecookies in protohtx.c...

CVE-2019-14241

HAProxy has a CVE-2019-14241 cookie memory corruption vulnerability described as a DoS via htx_manage_client_side_cookies in proto_htx.c. OpenSUSE advisories and IBM/Aspera pages indicate fixes in haproxy 2.0.5+git0.d905f49a and later; remediation is to upgrade to that version (e.g., haproxy 2.0....

SUSE-SU-2019:1862-1 Security update for ardana and crowbar

This update for ardana and crowbar fixes the following issues: - Restrict rootwrap directories for cinder bsc1132542 - Change Cinder default log level from DEBUG to INFO SCRD-7132 - Remove configuration from migration bsc1126391 - Configurable innodb flush options SCRD-7496 - Secure designate's...

The vulnerability of the `check_request_for_cacheability` function in server software like HAProxy allows attackers to disclose protected information.

The vulnerability of the checkrequestforcacheability function in the HAProxy network software is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information through a remote request without authentication...

EulerOS 2.0 SP8 : haproxy (EulerOS-SA-2019-1650)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests...

Information Disclosure

haproxy is vulnerable to information disclosure. An unauthenticated attacker is able to obtain confidential information due to improper validation in the function checkrequestforcacheability in protohttp.c...