DSA-4968-1 haproxy -- haproxyID: oval:org.secpod.oval:def:605627 | Date: (C)2021-09-08 (M)2023-11-13 |
Class: PATCH | Family: unix |
Ori Hollander reported that missing header name length checks in the htx_add_header and htx_add_trailer functions in HAProxy, a fast and reliable load balancing reverse proxy, could result in request smuggling attacks or response splitting attacks. Additionally this update addresses #993303 introduced in DSA 4960-1 causing HAProxy to fail serving URLs with HTTP/2 containing "//".
Product: |
haproxy |
vim-haproxy |