pkg:Debian/haproxy
共 51 筆 CVECRITICAL4HIGH27MEDIUM10
✅ 檢查你的版本
所有已知漏洞
- from 0, < 1.8.13-1
- from 0, < 1.8.19-1+deb10u1
- from 0, < 2.0.10-1
- from 0, < 1.8.19-1+deb10u4
- from 0, < 2.2.9-2+deb11u4
- from 0, < 2.0.13-2
- from 0, < 1.8.19-1+deb10u2
- from 0, < 2.2.9-2+deb11u6
- from 0, < 1.8.19-1+deb10u5
- from 0, < 2.6.12-1+deb12u3
- from 0, < 2.6.12-1+deb12u3
- HIGH7.5CVE-2024-45506HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwardi…from 0, < 2.9.10-1
- from 0, < 2.2.9-2+deb11u5
- from 0, < 2.2.9-2+deb11u5
- from 0, < 2.2.9-2+deb11u3
- from 0, < 2.2.9-2+deb11u3
- from 0, < 2.2.9-2+deb11u2
- from 0, < 2.2.9-2+deb11u2
- HIGH7.5CVE-2021-39242An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3.from 0, < 2.2.9-2+deb11u1
- from 0, < 2.2.9-2+deb11u1
- from 0, < 2.2.9-2+deb11u1
- from 0, < 2.0.6-1
- HIGH7.5CVE-2018-20615An out-of-bounds read issue was discovered in the HTTP/2 protocol decoder in HAProxy 1.8.x and 1.9.x through 1.9.0 which can result in a cr…from 0, < 1.8.16-2
- from 0, < 1.8.15-1
- from 0, < 1.7.5-2+deb9u1
- from 0, < 1.8.15-1
- HIGH7.5CVE-2018-14645A flaw was discovered in the HPACK decoder of HAProxy, before 1.8.14, that is used for HTTP/2.from 0, < 1.8.13-2
- from 0, < 1.8.8-1
- HIGH7.5CVE-2016-5360HAproxy 1.6.x before 1.6.6, when a deny comes from a reqdeny rule, allows remote attackers to cause a denial of service (uninitialized memo…from 0, < 1.6.5-2
- HIGH7.3CVE-2023-25950HTTP request/response smuggling vulnerability in HAProxy version 2.7.0, and 2.6.1 to 2.6.7 allows a remote attacker to alter a legitimate u…from 0, < 2.6.8-1
- from 0, < 2.2.9-2+deb11u6
- from 0, < 2.2.9-2+deb11u6
- from 0, < 2.2.9-2+deb11u7
- from 0, < 2.2.9-2+deb11u7
- from 0, < 2.2.9-2+deb11u4
- from 0, < 2.2.9-2+deb11u4
- MEDIUM5.9CVE-2018-11469Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attac…from 0, < 1.8.9-2
- MEDIUM5.3CVE-2024-53008Inconsistent interpretation of HTTP requests ('HTTP Request/Response Smuggling') issue exists in HAProxy.from 0
- MEDIUM5.3CVE-2024-49214QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address.from 0
- MEDIUM5.3CVE-2021-39241An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3.from 0, < 2.2.9-2+deb11u1
- from 0
- from 0, < 1.5.8-3+deb8u1
- from 0, < 1.5.14-1
- —CVE-2014-6269Multiple integer overflows in the http_request_forward_body function in proto_http.c in HAProxy 1.5-dev23 before 1.5.4 allow remote attacke…from 0, < 1.5.4-1
- —CVE-2013-2175HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to use hdr_ip or other "hdr_*" functions with a negative occurrence cou…from 0, < 1.4.24-1
- —CVE-2013-1912Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP in…from 0, < 1.4.23-1
- from 0, < 1.4.8-1+squeeze1
- from 0, < 1.4.23-1
- from 0, < 3.2.11-2
- from 0, < 3.0.11-1+deb13u2
- from 0, < 3.0.11-1+deb13u2