8.8

CVE-2020-11100

In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via a crafted HTTP/2 request, possibly causing remote code execution.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HaproxyHaproxy Version >= 1.8.0 < 2.1.4
DebianDebian Linux Version10.0
FedoraprojectFedora Version30
FedoraprojectFedora Version31
CanonicalUbuntu Linux Version18.04 SwEditionlts
CanonicalUbuntu Linux Version19.10
OpensuseLeap Version15.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 60.73% 0.99
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00002.html
Third Party Advisory
Mailing List
http://packetstormsecurity.com/files/157323/haproxy-hpack-tbl.c-Out-Of-Bounds-Write.html
Third Party Advisory
VDB Entry
http://www.haproxy.org
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1819111
Third Party Advisory
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=1168023
Third Party Advisory
Issue Tracking
https://git.haproxy.org/?p=haproxy.git%3Ba=commit%3Bh=5dfc5d5cd0d2128d77253ead3acf03a421ab5b88
https://lists.debian.org/debian-security-announce/2020/msg00052.html
Third Party Advisory
Mailing List
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/264C7UL3X7L7QE74ZJ557IOUFS3J4QQC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNW5RZLIX7LOXRLV7WMHX22CI43XSXKW/
https://security.gentoo.org/glsa/202012-22
Third Party Advisory
https://usn.ubuntu.com/4321-1/
Third Party Advisory
https://www.debian.org/security/2020/dsa-4649
Third Party Advisory
https://www.haproxy.org/download/2.1/src/CHANGELOG
Vendor Advisory
Release Notes
https://www.mail-archive.com/haproxy%40formilux.org/msg36876.html