Описание
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as exploited in the wild in 2024.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.9.9-1ubuntu2 |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | not-affected | 2.0.33-0ubuntu0.1 |
| esm-infra/xenial | not-affected | |
| focal | not-affected | 2.0.33-0ubuntu0.1 |
| jammy | not-affected | 2.4.24-0ubuntu0.22.04.1 |
| noble | not-affected | 2.8.5-1ubuntu3 |
| upstream | released | 2.9.10-1 |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as exploited in the wild in 2024.
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as exploited in the wild in 2024.
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1 ...
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service.
EPSS
7.5 High
CVSS3