Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Mageia 9: 2025-0138 Medium Risk of HAProxy Overflow Vulnerability

mageia
Calendar Grey April 25, 2025
Dist Mageia Esm H88
Newly released HAProxy updates tackle buffer overflow vulnerabilities in Mageia related to CVE-2025-32464. Check for complete resolution information.
BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refsAleandro Prudenzano of Doyensec and Edoardo Geraci of Codean Labs reported a bug in sample_conv_regs...

Summary

BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refsAleandro Prudenzano of Doyensec and Edoardo Geraci of Codean Labs reported a bug in sample_conv_regsub(), which can cause replacements of multiple back-references to overflow the temporary trash buffer. The problem happens when doing "regsub(match,replacement,g)": we're replacing every occurrence of "match" with "replacement" in the input sample, which requires a length check. For this, a max is applied, so that a replacement may not use more than the remaining length in the buffer. However, the length check is made on the replaced pattern and not on the temporary buffer used to carry the new string. This results in the remaining size to be usable for each input match, which can go beyond the temporary buffer size if more than one occurrence has to be replaced with something that's larger than the remaining room.

References

- https://bugs.mageia.org/show_bug.cgi?id=34186

- https://ubuntu.com/security/notices/USN-7431-1

-

- https://www.cve.org/CVERecord?id=CVE-2025-32464

Resolution

SRPMS

- 9/core/haproxy-2.8.14-1.1.mga9

Severity
medium
Lowest
Low
Medium
High
Critical

Publication date: 25 Apr 2025
URL: https://advisories.mageia.org/MGASA-2025-0138.html
Type: security
CVE: CVE-2025-32464

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here