ALSA-2025:21693

[ALSA-2025:21693] Important: haproxy security update

Type:

security

Severity:

important

Release date:

2025-11-19

Description:

The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications.  

Security Fix(es):  

  * haproxy: denial of service vulnerability in HAProxy mjson library (CVE-2025-11230)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	haproxy-2.8.14-1.el9_7.1.aarch64.rpm	cc956da2edcf38d516853bc621b087cdfaae76a30c2770323a10ad102a50a241
ppc64le	haproxy-2.8.14-1.el9_7.1.ppc64le.rpm	4016b3ce0189fb60eca94876870817855e405d4aaa990e2e82a70e42a8d6aec0
s390x	haproxy-2.8.14-1.el9_7.1.s390x.rpm	911206ffc56495c0c4aa9db0c362162194289ba8616ffa0d4b81898326abfd96
x86_64	haproxy-2.8.14-1.el9_7.1.x86_64.rpm	e710f3070212292bcf36a0811040f4f7f92b97ce2de77e8fddffedd0e82789a8

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.