HAProxy Environment Issues Vulnerabilities

HAProxy is an open source TCP/HTTP load balancing server from the French company HAProxy. The server provides 4-layer and 7-layer proxies and can support tens of thousands of level connections with high efficiency and stability. A security vulnerability exists in HAProxy that stems from the HTTP/...

CVE-2023-40225

HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers, violating RFC 9110 section 8.6. In uncommon cases, an HTTP/1 server behind HAProxy may interpre...

CVE-2023-40225

CVE-2023-40225 affects HAProxy versions up to 2.8.2 (and earlier 2.0.32, 2.1.x, 2.2.x, 2.3.x, 2.4.x, 2.5.x, 2.6.x, 2.7.x) where empty Content-Length headers may be forwarded, potentially causing an HTTP/1 server behind HAProxy to treat the payload as an extra request. Multiple advisories (Debian,...

CVE-2023-40225

HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and 2.8.x before 2.8.2 forwards empty Content-Length headers, violating RFC 9110 section 8.6. In uncommon cases, an HTTP/1 server behind HAProxy may interpre...

PT-2023-8866 · Haproxy +8 · Haproxy +8

Name of the Vulnerable Software and Affected Versions: HAProxy versions 2.0.32 through 2.8.1 HAProxy versions 2.1.x HAProxy versions 2.2.x through 2.2.30 HAProxy versions 2.3.x HAProxy versions 2.4.x through 2.4.23 HAProxy versions 2.5.x HAProxy versions 2.6.x before 2.6.15 HAProxy versions 2.7.x...

Information Disclosure

haproxy is vulnerable to an Information Disclosure. The vulnerability occurs because GitLab does not properly sanitize the FCGIBEGINREQUEST record. An attacker can exploit this vulnerability by sending a malicious request to GitLab that contains a crafted FCGIBEGINREQUEST record. This will cause...

Important Photon OS Security Update - PHSA-2023-3.0-0619

Updates of 'haproxy', 'pcre2', 'nss' packages of Photon OS have been released...

GO-2023-1923 Panic when handling invalid HAProxy PROXY v2 request in github.com/mastercactapus/proxyprotocol

Panic when handling invalid HAProxy PROXY v2 request in github.com/mastercactapus/proxyprotocol...

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2023-2269)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for haproxy (EulerOS-SA-2023-2293)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : haproxy (EulerOS-SA-2023-2269)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an...

EulerOS 2.0 SP11 : haproxy (EulerOS-SA-2023-2293)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an...

Critical: Red Hat Security Advisory: Red Hat Fuse 7.12 release and security update

A minor version update from 7.11 to 7.12 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring...

codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS

A flaw was found in codec-haproxy from the Netty project. This flaw allows an attacker to build a malformed crafted message and cause infinite recursion, causing stack exhaustion and leading to a denial of service DoS...

CVE-2023-25725 affecting package haproxy 2.1.5-1

CVE-2023-25725 affecting package haproxy 2.1.5-1. A patched version of the package is available...

ROS-20230620-03

A vulnerability in the HAProxy server software is related to a flaw in HTTP request processing. Exploitation of the vulnerability could allow an attacker acting remotely to execute a "smuggling of HTTP requests" attack...

Moderate: Red Hat Security Advisory: Migration Toolkit for Runtimes security update

Migration Toolkit for Runtimes 1.1.0 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS

A flaw was found in codec-haproxy from the Netty project. This flaw allows an attacker to build a malformed crafted message and cause infinite recursion, causing stack exhaustion and leading to a denial of service DoS...

Critical Photon OS Security Update - PHSA-2023-5.0-0009

Updates of 'linux-secure', 'haproxy', 'linux', 'linux-esx', 'tcpdump', 'influxdb', 'vim', 'linux-rt' packages of Photon OS have been released...

[SECURITY] Fedora 37 Update: mirrorlist-server-3.0.6-6.fc37

The mirrorlist-server uses the data created by MirrorManager2 to answer client request f or the "best" mirror. This implementation of the mirrorlist-server is written in Rust. The original version of the mirrorlist-server was part of the MirrorManager2 repository and it is implemented using Pytho...