[ALSA-2023:1696] Moderate: haproxy security update
Type:
security
Severity:
moderate
Release date:
2023-04-20
Description:
The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications. Security Fix(es): * haproxy: segfault DoS (CVE-2023-0056) * haproxy: request smuggling attack in HTTP/1 header parsing (CVE-2023-25725) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 haproxy-2.4.17-3.el9_1.2.aarch64.rpm d8296c983dfdac15d81dbe8ac568c4ea2905991afa5bf90b7efc58aff27459e1
ppc64le haproxy-2.4.17-3.el9_1.2.ppc64le.rpm 64a3144382833dad5022c384110f1d41dc8115f59f60b22460e8467938ec9bfd
s390x haproxy-2.4.17-3.el9_1.2.s390x.rpm 9db25d4d75528f1104434f9c8407f603a6b760dc32eb34b8f8de86dbd85e479d
x86_64 haproxy-2.4.17-3.el9_1.2.x86_64.rpm aadd3f3239510e6646a8e514bd196688b1bb649289f62c23af0da6e1bf5a3b3b
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.