Solution
Please Install the Updated Packages.
Insight
HAProxy provides high availability,
load balancing, and proxying for TCP and HTTP-based applications.
A buffer overflow flaw was discovered in the way HAProxy handled, under very specific conditions, data uploaded from a client. A remote attacker could possibly use this flaw to crash HAProxy. (CVE-2014-6269)
All haproxy users are advised to upgrade to this updated package, which contains a backported patch to correct this issue.
Affected
haproxy on CentOS 7
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2014-6269 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities