Lucene search
UbuntuUSN-2668-1HistoryJul 07, 2015 - 12:00 a.m.
HAProxy vulnerability
2015-07-0700:00:00
ubuntu.com
43
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
71.4%
Releases
- Ubuntu 15.04
- Ubuntu 14.10
Packages
- haproxy - fast and reliable load balancing reverse proxy
Details
It was discovered that HAProxy incorrectly handled certain buffers. A
remote attacker could possibly use this issue to obtain sensitive
information belonging to previous requests.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 15.04 | noarch | haproxy | < 1.5.10-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | haproxy-dbg | < 1.5.10-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | haproxy-dbgsym | < 1.5.10-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | haproxy-doc | < 1.5.10-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | vim-haproxy | < 1.5.10-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | haproxy | < 1.5.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | haproxy-dbg | < 1.5.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | haproxy-dbgsym | < 1.5.4-1ubuntu2.1 | UNKNOWN |
References
Related
securityvulns
securityvulns
HAProxy information disclosure
2015-07-13 00:00:00
[USN-2668-1] HAProxy vulnerability
2015-07-13 00:00:00
nessus
nessus
openSUSE Security Update : haproxy (openSUSE-2015-682)
2015-10-28 00:00:00
cvelist
cvelist
CVE-2015-3281
2015-07-06 14:55:00
openvas
openvas
Debian Security Advisory DSA 3301-1 (haproxy - security update)
2015-07-05 00:00:00
CentOS Update for haproxy CESA-2015:1741 centos6
2015-09-09 00:00:00
Fedora Update for haproxy FEDORA-2015-11267
2015-07-30 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: haproxy-1.5.14-1.fc21
2015-07-29 01:43:56
[SECURITY] Fedora 22 Update: haproxy-1.5.14-1.fc22
2015-07-29 01:46:35
centos
centos
haproxy security update
2015-09-08 19:57:39
debiancve
debiancve
CVE-2015-3281
2015-07-06 15:59:06
cloudfoundry
cloudfoundry
CVE-2015-3281 HAProxy vulnerabilities | Cloud Foundry
2017-04-04 00:00:00
ubuntucve
ubuntucve
CVE-2015-3281
2015-07-06 00:00:00
debian
debian
[SECURITY] [DSA 3301-1] haproxy security update
2015-07-05 04:03:21
[SECURITY] [DSA 3301-1] haproxy security update
2015-07-05 04:03:21
nvd
nvd
CVE-2015-3281
2015-07-06 15:59:06
suse
suse
Security update for haproxy (important)
2015-10-27 13:10:00
Security update for haproxy (important)
2015-10-01 13:10:26
osv
osv
haproxy - security update
2015-07-05 00:00:00
haproxy-1.7.0-1.1 on GA media
2024-06-15 00:00:00
redhat
redhat
prion
prion
Cross site request forgery (csrf)
2015-07-06 15:59:00
oraclelinux
oraclelinux
haproxy security update
2015-09-08 00:00:00
cve
cve
CVE-2015-3281
2015-07-06 15:59:06
freebsd
freebsd
haproxy -- information leak vulnerability
2015-07-02 00:00:00
archlinux
archlinux
haproxy: information leakage
2015-07-04 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 09:07:36
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
71.4%
Related for USN-2668-1