A flaw exists in the HPACK decoder of HAProxy, prior to 1.8.14, that is used for HTTP/2. An out-of-bounds read access in hpack_valid_idx() resulted in a remote crash and denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
haproxy haproxy |
||
canonical ubuntu linux 18.04 |
||
redhat enterprise linux 7.4 |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 7.3 |
||
redhat enterprise linux 7.5 |
||
redhat openshift container platform 3.9 |
||
redhat enterprise linux 7.6 |
||
redhat openshift 3.10 |