Ubuntu 24.04: USN-7133-1 critical: HAProxy information exposure
ubuntu
December 3, 2024
HAProxy could be made to expose sensitive information over the network.
Summary
HAProxy could be made to expose sensitive information over the
network.
Software Description:
- haproxy: fast and reliable load balancing reverse proxy
Details:
Yuki Mogi discovered that HAProxy incorrectly handled the interpretation
of certain HTTP requests. A remote attacker could possibly use this issue
to perform a request smuggling attack and obtain sensitive information.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS haproxy 2.8.5-1ubuntu3.2 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-7133-1
CVE-2024-53008
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-7133-1
Topics Covered
Package Information
https://launchpad.net/ubuntu/+source/haproxy/2.8.5-1ubuntu3.2
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!