Headline
Ubuntu Security Notice USN-7133-1
Ubuntu Security Notice 7133-1 - Yuki Mogi discovered that HAProxy incorrectly handled the interpretation of certain HTTP requests. A remote attacker could possibly use this issue to perform a request smuggling attack and obtain sensitive information.
==========================================================================Ubuntu Security Notice USN-7133-1December 03, 2024haproxy vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTSSummary:HAProxy could be made to expose sensitive information over thenetwork.Software Description:- haproxy: fast and reliable load balancing reverse proxyDetails:Yuki Mogi discovered that HAProxy incorrectly handled the interpretationof certain HTTP requests. A remote attacker could possibly use this issueto perform a request smuggling attack and obtain sensitive information.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS haproxy 2.8.5-1ubuntu3.2In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-7133-1 CVE-2024-53008Package Information: https://launchpad.net/ubuntu/+source/haproxy/2.8.5-1ubuntu3.2