A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. This flaw could allow an malicious user to send crafted HTTP response packets which lead to an infinite loop, eventually resulting in a denial of service condition. The highest threat from this vulnerability is availability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
haproxy haproxy |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat software collections - |
||
redhat openshift container platform 4.0 |
||
debian debian linux 11.0 |