CVE-2023-0056

Updated: 2024-11-30 02:14:51.322155

Description:

An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an authenticated remote attacker to run a specially crafted malicious server in an OpenShift cluster. The biggest impact is to availability.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

CentOS 6 ELS haproxy 1.5.18 6.5 MEDIUM Ignored 2023-12-01 03:18:55
CentOS 8.4 ELS haproxy 1.8.27-2 6.5 MEDIUM Ignored 2023-12-01 03:18:54
CentOS 8.5 ELS haproxy 1.8.27-2 6.5 MEDIUM Ignored 2023-12-01 03:18:54
CloudLinux 6 ELS haproxy 1.5.18 6.5 MEDIUM Ignored 2023-12-01 03:18:54
Oracle Linux 6 ELS haproxy 1.5.18 6.5 MEDIUM Ignored 2023-12-01 03:18:54
Ubuntu 16.04 ELS haproxy 1.6.3 6.5 MEDIUM Ignored 2023-12-01 03:18:55
Ubuntu 18.04 ELS haproxy 1.8.8 6.5 MEDIUM Ignored 2023-12-01 03:18:55