EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2026-1089)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON...

SUSE-SU-2026:20092-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: issue in the mjson JSON decoder leads to excessive resource consumption when processing numbers with large exponents bsc1250983...

OPENSUSE-SU-2026:20032-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: issue in the mjson JSON decoder leads to excessive resource consumption when processing numbers with large exponents bsc1250983...

SUSE-SU-2026:20109-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: issue in the mjson JSON decoder leads to excessive resource consumption when processing numbers with large exponents bsc1250983...

SUSE-SU-2026:20094-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: issue in the mjson JSON decoder leads to excessive resource consumption when processing numbers with large exponents bsc1250983...

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2026-1069)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2026-1089)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MiracleLinux 9 : haproxy-2.8.14-1.el9_7.1 (AXSA:2025-11521:04)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-11521:04 advisory. haproxy: denial of service vulnerability in HAProxy mjson library CVE-2025-11230 Tenable has extracted the preceding description block directly from the...

CVE-2024-53008 vulnerabilities

Vulnerabilities for packages: haproxy...

GHSA-QQ72-VH82-FWV9 vulnerabilities

Vulnerabilities for packages: haproxy...

PT-2026-7983

Name of the Vulnerable Software and Affected Versions HAProxy affected versions not specified Description A crash can occur due to the processing of an INITIAL packet within the NEW TOKEN format. This issue affects systems utilizing HAProxy with QUIC enabled and has the potential to cause an...

PT-2026-8282

This update for haproxy fixes the following issues: - Update to version 3.2.12+git0.6011f448e - CVE-2026-26081: Fixed a DOS vulnerability in QUIC. bsc1257976 - CVE-2026-26080: Fixed a DOS vulnerability in QUIC. bsc1257976...

GHSA-FC36-5GC3-JMHX vulnerabilities

Vulnerabilities for packages: haproxy...

CVE-2025-11230 vulnerabilities

Vulnerabilities for packages: haproxy...

curl: HAProxy Connection Reuse leads to IP Spoofing and mTLS Context Smuggling

Executive Summary libcurl fails to respect the CURLOPTHAPROXYCLIENTIP configuration when reusing existing connections. Due to a missing check in the connection pooling logic, libcurl indiscriminately reuses a TCP/TLS connection established with a specific identity IP A for subsequent requests...

BIT-HAPROXY-2025-11230 Denial of service vulnerability in HAProxy mjson library

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests...

CVE-2025-11230 affecting package haproxy for versions less than 2.4.24-2

CVE-2025-11230 affecting package haproxy for versions less than 2.4.24-2. A patched version of the package is available...

CVE-2025-11230 affecting package haproxy for versions less than 2.9.11-4

CVE-2025-11230 affecting package haproxy for versions less than 2.9.11-4. A patched version of the package is available...

CLSA-2025-1765545936 haproxy: Fix of CVE-2025-11230

CVE-2025-11230: fix possible DoS in mjson library when parsing numbers...

GHSA-7C64-F9JR-V9H2 vulnerabilities

Vulnerabilities for packages: polaris-fips, fluxcd-kustomize-mutating-webhook-fips, k9s, nri-discovery-kubernetes, tetragon-fips, nats, k8s-device-plugin, hugo-extended, spicedb-fips, kube-bench, terraform-mcp-server, k9s-fips, sqlexporter-fips, k8sgpt, newrelic-fluent-bit-output-fips,...