Falco Schmutz discovered that HAProxy incorrectly handled the reqdeny filter. A remote attacker could use this issue to cause HAProxy to crash, resulting in a denial of service.
{ "binaries": [ { "binary_version": "1.6.3-1ubuntu0.1", "binary_name": "haproxy" }, { "binary_version": "1.6.3-1ubuntu0.1", "binary_name": "haproxy-dbg" }, { "binary_version": "1.6.3-1ubuntu0.1", "binary_name": "haproxy-dbgsym" }, { "binary_version": "1.6.3-1ubuntu0.1", "binary_name": "haproxy-doc" }, { "binary_version": "1.6.3-1ubuntu0.1", "binary_name": "vim-haproxy" } ], "availability": "No subscription required" }