CLSA-2024-1733908866

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1733908866.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2024-1733908866
Upstream
Published
2024-12-11T09:21:12Z
Modified
2026-06-04T09:46:40.477153753Z
Summary
Fix CVE(s): CVE-2023-25725
Details
  • SECURITY UPDATE: The HTTP header parsers in HAProxy may accept empty header field names
    • debian/patches/CVE-2023-25725.patch: prevent empty header field names
    • CVE-2023-25725
References

Affected packages

TuxCare:Ubuntu:16.04 / haproxy

Package

Name
haproxy
Purl
pkg:deb/tuxcare/haproxy?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.3-1ubuntu0.3+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1733908866.json"

TuxCare:Ubuntu:16.04 / haproxy-doc

Package

Name
haproxy-doc
Purl
pkg:deb/tuxcare/haproxy-doc?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.3-1ubuntu0.3+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1733908866.json"

TuxCare:Ubuntu:16.04 / vim-haproxy

Package

Name
vim-haproxy
Purl
pkg:deb/tuxcare/vim-haproxy?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.3-1ubuntu0.3+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1733908866.json"