Moderate: Red Hat Security Advisory: rh-haproxy18-haproxy security, bug fix, and enhancement update

An update for rh-haproxy18-haproxy is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

haproxy: Out-of-bounds read in dns.c:dns_validate_dns_response() allows for memory disclosure

An out-of-bounds read in dnsvalidatednsresponse in dns.c was discovered in HAProxy through 1.8.14. Due to a missing check when validating DNS responses, remote attackers might be able read the 16 bytes corresponding to an AAAA record from the non-initialized part of the buffer, possibly accessing...

haproxy: Information disclosure in check_request_for_cacheability function in proto_http.c

Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 if cache enabled allows attackers to achieve information disclosure via an unauthenticated remote request, related to the protohttp.c checkrequestforcacheability function...

haproxy: Infinite recursion via crafted packet allows stack exhaustion and denial of service

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

Photon OS 2.0: Haproxy PHSA-2019-2.0-0150

An update of the haproxy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0150. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 1.0: Haproxy PHSA-2019-1.0-0226

An update of the haproxy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0226. The text itself is copyright C VMware, Inc. include"compat.inc"; if description...

Photon OS 1.0: Haproxy PHSA-2019-1.0-0220

An update of the haproxy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0220. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

Code injection

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

CVE-2019-11323

HAProxy before 1.9.7 is vulnerable due to mishandling a reload with rotated keys, triggering the use of uninitialized, highly predictable HMAC keys in ssl_sock.h. This can lead to disclosure of HMAC keys. Public exploit details are not provided in the documents. The IBM Aspera IBM pages note fixe...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

CVE-2019-11323

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/sslsock.h error...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0226

An update of 'elfutils', 'haproxy' packages of Photon OS has been released...

Important Photon OS Security Update - PHSA-2019-0226

Updates of 'haproxy', 'elfutils' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-0010

Updates of 'postgresql', 'haproxy', 'ansible', 'libxslt', 'PyYAML' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-3.0-0010

Updates of 'postgresql', 'haproxy', 'libxslt', 'ansible', 'PyYAML' packages of Photon OS have been released...

HAProxy Compressed Name Denial of Service (CVE-2018-20103)

A denial-of-service vulnerability has been reported in HAProxy. The vulnerability is due to incorrect handling of compressed pointers. Successful exploitation of this vulnerability could lead to a denial of service condition...