CVE-2018-20103 log
Source |
|
Severity | Medium |
Remote | Yes |
Type | Denial of service |
Description | A stack-exhaustion issue has been found in HAProxy before 1.8.15, in the dns_read_name() function in dns.c, where an infinite recursion can be triggered via a crafted DNS packet. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-836 | haproxy | 1.8.14-1 | 1.9.0-1 | Medium | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
24 Jan 2019 | ASA-201901-15 | AVG-836 | haproxy | Medium | denial of service |
References |
---|
https://www.mail-archive.com/haproxy@formilux.org/msg32055.html https://git.haproxy.org/?p=haproxy-1.8.git;a=commitdiff;h=2b514b24f71af8ff8c6593636850b9a312a05278 |