HAProxy: Multiple vulnerabilities
Gentoo Linux Security Advisory
||GLSA 201307-01 / HAProxy
||July 11, 2013
||July 11, 2013: 1
All supported architectures
Multiple vulnerabilities have been found in HAProxy, allowing
attackers to execute arbitrary code or cause Denial of Service.
HAProxy is a free, very fast and reliable solution offering high
availability, load balancing, and proxying for TCP and HTTP-based
Multiple vulnerabilities have been discovered in HAProxy. Please review
the CVE identifiers referenced below for details.
A remote attacker could send a specially crafted request, possibly
resulting in execution of arbitrary code with the privileges of the
application or a Denial of Service condition.
There is no known workaround at this time.
All HAProxy users should upgrade to the latest version:
Code Listing 3.1: Resolution
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-proxy/haproxy-1.4.24"