haproxy

Licenses: LGPL-2.1 | OpenSSL | GPL-2.0

Direct Vulnerabilities

Known vulnerabilities in the https://haproxy.org|haproxy package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • H
NULL Pointer Dereference

[,3.5-dev1)
  • C
Integer Overflow or Wraparound

[,3.5-dev1)
  • M
Improper Handling of Length Parameter Inconsistency

[2.6-dev0,3.3.6)
  • H
Inefficient Algorithmic Complexity

[2.4.0,2.4.30)[2.6.0,2.6.23)[2.8.0,2.8.16)[3.0.0,3.0.12)[3.1.0,3.1.9)[3.2.0,3.2.6)
  • H
Comparison Using Wrong Factors

[2.2-dev3,3.2-dev10)
  • M
HTTP Request Smuggling

[2.6.0,2.6.19)[2.8.0,2.8.11)[2.9.0,2.9.10)[3.0.0,3.0.3)
  • M
User Impersonation

[1.8.0,2.9.11)[3.0.0,3.0.5)[3.1-dev0,3.1-dev7)
  • H
Loop with Unreachable Exit Condition ('Infinite Loop')

[2.9.0,2.9.10)[3.0.0,3.0.4)[3.1-dev0,3.1-dev6)
  • H
Denial of Service (DoS)

[,2.8.0)
  • H
Information Exposure

[2.0.0,2.0.33)[2.2.0,2.2.31)[2.4.0,2.4.24)[2.6.0,2.6.15)[2.7.0,2.7.10)[2.8.0,2.8.2)
  • H
Improper Input Validation

[2.0.0,2.0.33)[2.2.0,2.2.31)[2.4.0,2.4.24)[2.6.0,2.6.15)[2.7.0,2.7.10)[2.8.0,2.8.2)
  • H
HTTP Request Smuggling

[2.6.1,2.8-dev1)
  • M
Information Exposure

[2.1,2.8-dev1)
  • M
Access Restriction Bypass

[,2.0.31)[2.2.0,2.2.29)[2.3.0,2.4.22)[2.5.0,2.5.12)[2.6.0,2.6.9)[2.7.0,2.7.3)
  • M
Denial of Service (DoS)

[0,2.6-dev2)
  • H
Denial of Service (DoS)

[1.4,1.9.9)[2.0.0,2.0.3)
  • M
Use of a Risky Cryptographic Algorithm

[1.9.2,1.9.7)
  • H
HTTP Request Smuggling

[,2.0.6)
  • M
Denial of Service (DoS)

[0,1.5.4)
  • M
Out-of-Bounds

[,1.4.25)
  • H
Out-of-Bounds

[,1.8.8)
  • M
Out-of-Bounds

[,1.5.14)
  • H
Improper Handling of Exceptional Conditions

[2.2.0,2.2.16)[2.3.0,2.3.13)[2.4.0,2.4.3)
  • C
Arbitrary Code Injection

[,2.0.10)
  • H
Out-of-bounds Write

[1.8.0,2.1.4)
  • M
Out-of-Bounds

[,1.4.23)
  • H
Integer Overflow or Wraparound

[2.0.0,2.0.25)[2.2.0,2.2.17)[2.3.0,2.3.14)[2.4.0,2.4.4)
  • H
Out-of-Bounds

[0,1.6.6)
  • M
Improper Input Validation

[,1.4.24)
  • M
HTTP Request Smuggling

[2.0.0,2.0.24)[2.2.0,2.2.16)[2.3.0,2.3.13)[2.4.0,2.4.3)
  • H
Improper Input Validation

[2.2.0,2.2.16)[2.3.0,2.3.13)[2.4.0,2.4.3)
  • H
Denial of Service (DoS)

[,1.8.15)
  • H
Out-of-bounds Read

[1.8.0,1.8.17)
  • H
Out-of-bounds Read

[,1.8.15)
  • H
Out-of-bounds Read

[,1.8.14)
  • M
Information Exposure

[1.8.0,1.8.10)