| Name: | haproxy |
|---|---|
| Version: | 2.4.22 |
| Release: | 3.el9_5.1 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 7010223 |
| License: | GPLv2+ |
| RPM: | haproxy-2.4.22-3.el9_5.1.aarch64.rpm |
| Source RPM: | haproxy-2.4.22-3.el9_5.1.src.rpm |
| Build Date: | Tue Feb 04 2025 |
| Build Host: | build-ol9-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | http://www.haproxy.org/ |
| Summary: | HAProxy reverse proxy for high availability environments |
| Description: | HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests depending on statically assigned cookies - spread load among several servers while assuring server persistence through the use of HTTP cookies - switch to backup servers in the event a main one fails - accept connections to special ports dedicated to service monitoring - stop accepting connections without breaking existing ones - add, modify, and delete HTTP headers in both directions - block requests matching particular patterns - report detailed status to authenticated users from a URI intercepted from the application |
- Always clear retry flags in read/write functions to avoid CPU usage spikes - Fix "unable to load certificate chain from file" issue Resolves: RHEL-72955, RHEL-72952
- Reject "#" as part of URI path component (CVE-2023-45539, RHEL-18169)
- Reject any empty content-length header value (CVE-2023-40225, RHEL-7736)
- Update to 2.4.22 (#2196530)
- Fix uninitizalized resevered bytes (CVE-2023-0836, #2180861)
- Reject empty http header field names (CVE-2023-25725, #2169510)
- Refuse interim responses with end-stream flag set (CVE-2023-0056, #2161140)