The HTTP/2 implementation in HAProxy before 2.0.10 mishandles headers, as demonstrated by carriage return , line feed , and the zero character , aka Intermediary Encapsulation Attacks.changed the descriptionchanged the descriptionmade the issue visible to everyone