Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Critical Vulnerability in HAProxy (CVE-2021-40346)

2 Posts 2 Posters 518 Views

Log in to reply

N

nfld_republic
last edited by

Hi Folks - Is pfSense 2.5.2 CE included in this vulnerabilty?

More Info: Critical Vulnerability in HAProxy (CVE-2021-40346): Integer Overflow Enables HTTP Smuggling
L 1 Reply Last reply
Reply Quote 1
L

Lazer13 @nfld_republic
last edited by

@nfld_republic haproxy-package uses version 1.8 and is not affected. Only version 2.0 and above.
haproxy-devel-package is using 2.2.14 and thus affected. Fixed version is 2.2.17.
1 Reply Last reply
Reply Quote 0

Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.

1 / 1