ALSA-2024:8849

[ALSA-2024:8849] Moderate: haproxy security update

Type:

security

Severity:

moderate

Release date:

2024-11-06

Description:

The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications.  

Security Fix(es):  

  * haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers (CVE-2023-45539)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	haproxy-1.8.27-5.el8_10.1.aarch64.rpm	ff29984533a5a37273c8d17518a69b5bd5d1f7714c833413615f3a5b46f15183
ppc64le	haproxy-1.8.27-5.el8_10.1.ppc64le.rpm	f4e9fa2b7268424c7bb940429d3af851a9ce93a6dec1f09271a4419eb3352452
s390x	haproxy-1.8.27-5.el8_10.1.s390x.rpm	eba302de373444454ad31fe3687f227fd76c607f2e92e1f27c8489f0eccb4712
x86_64	haproxy-1.8.27-5.el8_10.1.x86_64.rpm	2f3c99993979934681525692e838468214700b832e1b99c4980994931ec10512

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.