1989 matches found
CVE-2025-32464
HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sampleconvregsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one...
CVE-2025-32464
HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sampleconvregsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one...
PT-2025-15670 · Haproxy +6 · Haproxy +6
Name of the Vulnerable Software and Affected Versions: HAProxy versions 2.2 through 3.1.6 Description: The issue is related to a heap-based buffer overflow in certain uncommon configurations due to the mishandling of the replacement of multiple short patterns with a longer one. This occurs in the...
Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to CVE-2024-45506.
Summary HAProxy is used by the CP4D Scheduling Service for multicluster scheduling. CVE-2024-45506. Vulnerability Details CVEID:CVE-2024-45506 DESCRIPTION: HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding...
Photon OS 5.0: Haproxy PHSA-2024-5.0-0426
An update of the haproxy package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0426. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2025-1297)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Inconsistent interpretation of HTTP requests 'HTTP Request/Response Smuggling' issue exists in HAProxy. If this vulnerability is exploited, a remo...
EulerOS 2.0 SP12 : haproxy (EulerOS-SA-2025-1298)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Inconsistent interpretation of HTTP requests 'HTTP Request/Response Smuggling' issue exists in HAProxy. If this vulnerability is exploited, a remo...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2025-1297)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2025-1298)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
haproxy bug fix and enhancement update
An update is available for haproxy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The haproxy packages provide a reliable, high-performance network load balanc...
Linux Distros Unpatched Vulnerability : CVE-2024-49214
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the...
Security update for haproxy
This update for haproxy fixes the following issues: Update to version 2.8.11+git0.01c1056a4: VUL-0: CVE-2024-53008: haproxy: HTTP/3 request smuggling via malformed HTTP headers forwarded to a HTTP/1.1 non-compliant back-end server bsc1233973 BUG/MINOR: cfgparse-listen: fix option httpslog overrid...
SUSE-SU-2025:20230-1 Security update for haproxy
This update for haproxy fixes the following issues: Update to version 2.8.11+git0.01c1056a4: VUL-0: CVE-2024-53008: haproxy: HTTP/3 request smuggling via malformed HTTP headers forwarded to a HTTP/1.1 non-compliant back-end server bsc1233973 BUG/MINOR: cfgparse-listen: fix option httpslog overrid...
Linux Distros Unpatched Vulnerability : CVE-2023-25950
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate user's request. As a...
Linux Distros Unpatched Vulnerability : CVE-2014-6269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in the httprequestforwardbody function in protohttp.c in HAProxy 1.5-dev23 before 1.5.4 allow remote attackers to cause a denial of...
GHSA-43Q4-PF55-3XHC vulnerabilities
Vulnerabilities for packages: haproxy...
GHSA-GMVF-RV8W-2HRH vulnerabilities
Vulnerabilities for packages: haproxy...
GHSA-XGQ7-JP95-V2QV vulnerabilities
Vulnerabilities for packages: haproxy...
GHSA-H2P2-W857-329F vulnerabilities
Vulnerabilities for packages: haproxy...
GHSA-8JGF-8R3G-HXH8 vulnerabilities
Vulnerabilities for packages: haproxy...