CVE-2018-11469

NameCVE-2018-11469
DescriptionIncorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attackers to achieve information disclosure via an unauthenticated remote request, related to the proto_http.c check_request_for_cacheability function.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium (attack range: remote)
Debian Bugs900084

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
haproxy (PTS)jessie1.5.8-3+deb8u2fixed
jessie (security)1.5.8-3+deb8u1fixed
stretch1.7.5-2fixed
buster1.8.14-1fixed
sid1.8.15-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
haproxysource(unstable)1.8.9-2medium900084
haproxysourcejessie(not affected)
haproxysourcestretch(not affected)

Notes

[stretch] - haproxy <not-affected> (Issue introduced in 1.8.0)
[jessie] - haproxy <not-affected> (Issue introduced in 1.8.0)
https://git.haproxy.org/?p=haproxy-1.8.git;a=commit;h=17514045e5d934dede62116216c1b016fe23dd06

Search for package or bug name: Reporting problems