CVE-2015-3281
published 2015-07-06CVE-2015-3281: The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which…
medium5CVSS 3.1
AVNACLAuNCPINAN
The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninitialized memory contents of previous requests) via a crafted request.
Affected
41 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | haproxy | < haproxy 1.5.14-1 (bookworm) | haproxy 1.5.14-1 (bookworm) |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | — | — |
| haproxy | haproxy | >= 0 < 1.5.14-1 | 1.5.14-1 |
| haproxy | haproxy | >= 0 < 1.5.14-1 | 1.5.14-1 |
| haproxy | haproxy | >= 0 < 1.5.14-1 | 1.5.14-1 |
| haproxy | haproxy | >= 0 < 1.5.14-1 | 1.5.14-1 |
| opensuse | openstack_cloud | — | — |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM