REDHAT-BUG-2413003: High severity HAProxy HAProxy vulnerability
A flaw was found in haproxy. A stemming from an inefficient algorithmic complexity issue within its bundled mjson parsing library. This vulnerability is triggered when haproxy is configured to analyze JSON content, such as with the jsonquery or jwtpayloadquery function
Affected Software
Event History
Frequently Asked Questions
What is the severity of REDHAT-BUG-2413003?
The vulnerability REDHAT-BUG-2413003 is classified as a high severity issue due to its potential impact on system performance.
How do I fix REDHAT-BUG-2413003?
To fix REDHAT-BUG-2413003, ensure that you upgrade to the patched version of HAProxy that addresses this mjson parsing library issue.
What are the potential impacts of REDHAT-BUG-2413003?
The potential impacts of REDHAT-BUG-2413003 include degraded performance when processing JSON data, which can affect application responsiveness.
Who is affected by REDHAT-BUG-2413003?
Users running vulnerable versions of HAProxy that are configured to analyze JSON content are affected by REDHAT-BUG-2413003.
What kind of configurations trigger REDHAT-BUG-2413003?
REDHAT-BUG-2413003 is triggered when HAProxy is configured with json_query or jwt_payload_query functions for processing JSON data.