CVE-2015-3281: Buffer Overflow
First published: Mon Jul 06 2015(Updated: )
The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninitialized memory contents of previous requests) via a crafted request.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Debian Debian Linux | =8.0 | |
| Haproxy Haproxy | =1.5-dev | |
| Haproxy Haproxy | =1.5-dev0 | |
| Haproxy Haproxy | =1.5-dev1 | |
| Haproxy Haproxy | =1.5-dev10 | |
| Haproxy Haproxy | =1.5-dev11 | |
| Haproxy Haproxy | =1.5-dev12 | |
| Haproxy Haproxy | =1.5-dev13 | |
| Haproxy Haproxy | =1.5-dev14 | |
| Haproxy Haproxy | =1.5-dev15 | |
| Haproxy Haproxy | =1.5-dev16 | |
| Haproxy Haproxy | =1.5-dev17 | |
| Haproxy Haproxy | =1.5-dev18 | |
| Haproxy Haproxy | =1.5-dev19 | |
| Haproxy Haproxy | =1.5-dev2 | |
| Haproxy Haproxy | =1.5-dev3 | |
| Haproxy Haproxy | =1.5-dev4 | |
| Haproxy Haproxy | =1.5-dev5 | |
| Haproxy Haproxy | =1.5-dev6 | |
| Haproxy Haproxy | =1.5-dev7 | |
| Haproxy Haproxy | =1.5-dev8 | |
| Haproxy Haproxy | =1.5-dev9 | |
| Haproxy Haproxy | =1.5.0 | |
| Haproxy Haproxy | =1.5.1 | |
| Haproxy Haproxy | =1.5.2 | |
| Haproxy Haproxy | =1.5.3 | |
| Haproxy Haproxy | =1.5.4 | |
| Haproxy Haproxy | =1.5.5 | |
| Haproxy Haproxy | =1.5.6 | |
| Haproxy Haproxy | =1.5.7 | |
| Haproxy Haproxy | =1.5.8 | |
| Haproxy Haproxy | =1.5.9 | |
| Haproxy Haproxy | =1.5.10 | |
| Haproxy Haproxy | =1.5.11 | |
| Haproxy Haproxy | =1.5.12 | |
| Haproxy Haproxy | =1.5.13 | |
| Haproxy Haproxy | =1.6-dev0 | |
| Canonical Ubuntu Linux | =14.10 | |
| Canonical Ubuntu Linux | =15.04 | |
| Opensuse Linux Enterprise High Availability Extension | =12 | |
| Opensuse Openstack Cloud | =5 | |
| openSUSE openSUSE | =13.2 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Server Aus | =7.3 | |
| Redhat Enterprise Linux Server Aus | =7.4 | |
| Redhat Enterprise Linux Server Aus | =7.6 | |
| Redhat Enterprise Linux Server Eus | =7.1 | |
| Redhat Enterprise Linux Server Eus | =7.2 | |
| Redhat Enterprise Linux Server Eus | =7.3 | |
| Redhat Enterprise Linux Server Eus | =7.4 | |
| Redhat Enterprise Linux Server Eus | =7.5 | |
| Redhat Enterprise Linux Server Eus | =7.6 | |
| Redhat Enterprise Linux Server Tus | =7.3 | |
| Redhat Enterprise Linux Server Tus | =7.6 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Suse Linux Enterprise High Availability Extension | =12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.haproxy.org/?p=haproxy-1.5.git%3Ba=commit%3Bh=7ec765568883b2d4e5a2796adbeb492a22ec9bd4
- http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00023.html
- http://rhn.redhat.com/errata/RHSA-2015-1741.html
- http://rhn.redhat.com/errata/RHSA-2015-2666.html
- http://www.debian.org/security/2015/dsa-3301
- http://www.haproxy.org/news.html
- http://www.securityfocus.com/bid/75554
- http://www.ubuntu.com/usn/USN-2668-1
- agent/type
- agent/first-publish-date
- agent/references
- agent/severity
- agent/weakness
- agent/remedy
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- agent/softwarecombine
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- vendor/haproxy
- canonical/haproxy haproxy
- version/haproxy haproxy/1.5-dev
- version/haproxy haproxy/1.5-dev0
- version/haproxy haproxy/1.5-dev1
- version/haproxy haproxy/1.5-dev10
- version/haproxy haproxy/1.5-dev11
- version/haproxy haproxy/1.5-dev12
- version/haproxy haproxy/1.5-dev13
- version/haproxy haproxy/1.5-dev14
- version/haproxy haproxy/1.5-dev15
- version/haproxy haproxy/1.5-dev16
- version/haproxy haproxy/1.5-dev17
- version/haproxy haproxy/1.5-dev18
- version/haproxy haproxy/1.5-dev19
- version/haproxy haproxy/1.5-dev2
- version/haproxy haproxy/1.5-dev3
- version/haproxy haproxy/1.5-dev4
- version/haproxy haproxy/1.5-dev5
- version/haproxy haproxy/1.5-dev6
- version/haproxy haproxy/1.5-dev7
- version/haproxy haproxy/1.5-dev8
- version/haproxy haproxy/1.5-dev9
- version/haproxy haproxy/1.5.0
- version/haproxy haproxy/1.5.1
- version/haproxy haproxy/1.5.2
- version/haproxy haproxy/1.5.3
- version/haproxy haproxy/1.5.4
- version/haproxy haproxy/1.5.5
- version/haproxy haproxy/1.5.6
- version/haproxy haproxy/1.5.7
- version/haproxy haproxy/1.5.8
- version/haproxy haproxy/1.5.9
- version/haproxy haproxy/1.5.10
- version/haproxy haproxy/1.5.11
- version/haproxy haproxy/1.5.12
- version/haproxy haproxy/1.5.13
- version/haproxy haproxy/1.6-dev0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.10
- version/canonical ubuntu linux/15.04
- vendor/opensuse
- canonical/opensuse linux enterprise high availability extension
- version/opensuse linux enterprise high availability extension/12
- canonical/opensuse openstack cloud
- version/opensuse openstack cloud/5
- canonical/opensuse opensuse
- version/opensuse opensuse/13.2
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/7.3
- version/redhat enterprise linux server aus/7.4
- version/redhat enterprise linux server aus/7.6
- canonical/redhat enterprise linux server eus
- version/redhat enterprise linux server eus/7.1
- version/redhat enterprise linux server eus/7.2
- version/redhat enterprise linux server eus/7.3
- version/redhat enterprise linux server eus/7.4
- version/redhat enterprise linux server eus/7.5
- version/redhat enterprise linux server eus/7.6
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/7.3
- version/redhat enterprise linux server tus/7.6
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/7.0
- vendor/suse
- canonical/suse linux enterprise high availability extension
- version/suse linux enterprise high availability extension/12