CVE-2012-2942

HAProxy <1.4.21 - Buffer Overflow

Title source: llm

Description

Buffer overflow in the trash buffer in the header capture functionality in HAProxy before 1.4.21, when global.tune.bufsize is set to a value greater than the default and header rewriting is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors.

References (12)

[Various Sources] http://haproxy.1wt.eu/#news

[Various Sources] http://haproxy.1wt.eu/download/1.4/src/CHANGELOG

[Various Sources] http://haproxy.1wt.eu/git?p=haproxy-1.4.git%3Ba=commit%3Bh=30297cb17147a8d339eb160226bcc08c91d9530b

[Vendor Advisory] http://secunia.com/advisories/49261

[Vendor Advisory] http://www.ubuntu.com/usn/USN-1800-1

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/75777

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/53647

[Third Party Advisory] http://www.debian.org/security/2013/dsa-2711

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201301-02.xml

[Mailing List] http://www.openwall.com/lists/oss-security/2012/05/23/12

[Mailing List] http://www.openwall.com/lists/oss-security/2012/05/23/15

[Mailing List] http://www.openwall.com/lists/oss-security/2012/05/28/1

Scores

EPSS 0.0020

EPSS Percentile 41.6%

Classification

CWE

CWE-119

Status draft

Affected Products (1)

haproxy/haproxy < 1.4.20

Timeline

Published May 27, 2012

Tracked Since Feb 18, 2026