traefik
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Modern reverse proxy written in Go |
| Version |
3.2.1-1 [extra-testing] 3.2.0-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2252 | 2.4.8-1 | 2.4.13-1 | Low | Fixed | |
| AVG-1591 | 2.4.2-1 | 2.4.8-1 | Low | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-32813 | AVG-2252 | Low | Yes | Privilege escalation | Prior to version 2.4.13, there exists a potential header vulnerability in Traefik's handling of the Connection header. Active exploitation of this issue is... |
| CVE-2021-27375 | AVG-1591 | Low | Yes | Insufficient validation | Traefik before 2.4.5 allows the loading of IFRAME elements from other domains. |