Ben Kallus discovered that HAProxy incorrectly handled empty Content-Length headers. A remote attacker could possibly use this issue to manipulate the payload and bypass certain restrictions.
{ "availability": "No subscription required", "binaries": [ { "haproxy": "2.4.22-0ubuntu0.22.04.2", "haproxy-doc": "2.4.22-0ubuntu0.22.04.2", "vim-haproxy": "2.4.22-0ubuntu0.22.04.2", "haproxy-dbgsym": "2.4.22-0ubuntu0.22.04.2" } ] }