Information on source package haproxy

Available versions

Bug	jessie	stretch	buster	bullseye	sid	Description
TEMP-0000000-B9CD89	vulnerable (no DSA)	fixed	fixed	fixed	fixed	BUG/MAJOR: http: prevent risk of reading past end with balance url_param
TEMP-0000000-1F321D	vulnerable (no DSA)	fixed	fixed	fixed	fixed	BUG/MAJOR: http: don't read past buffer's end in http_replace_value
CVE-2019-18277	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	A flaw was found in HAProxy before 2.0.6. In legacy mode, messages fea ...
CVE-2018-20103	fixed	vulnerable (no DSA)	fixed	fixed	fixed	An issue was discovered in dns.c in HAProxy through 1.8.14. In the cas ...
CVE-2018-20102	fixed	vulnerable (no DSA)	fixed	fixed	fixed	An out-of-bounds read in dns_validate_dns_response in dns.c was discov ...

Bug	Description
CVE-2019-14241	HAProxy through 2.0.2 allows attackers to cause a denial of service (h ...
CVE-2019-11323	HAProxy before 1.9.7 mishandles a reload with rotated keys, which trig ...
CVE-2018-20615	An out-of-bounds read issue was discovered in the HTTP/2 protocol deco ...
CVE-2018-14645	A flaw was discovered in the HPACK decoder of HAProxy, before 1.8.14, ...
CVE-2018-11469	Incorrect caching of responses to requests including an Authorization ...
CVE-2018-10184	An issue was discovered in HAProxy before 1.8.8. The incoming H2 frame ...
CVE-2016-5360	HAproxy 1.6.x before 1.6.6, when a deny comes from a reqdeny rule, all ...
CVE-2015-3281	The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1. ...
CVE-2014-6269	Multiple integer overflows in the http_request_forward_body function i ...
CVE-2013-2175	HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to ...
CVE-2013-1912	Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5- ...
CVE-2012-2942	Buffer overflow in the trash buffer in the header capture functionalit ...

DSA / DLA	Description
DSA-3301-1	haproxy - security update
DSA-2711-1	haproxy - several