CVE-2024-45506
Summary
HAProxy 2.9-dev0 through 2.9.9, 3.0-dev0 through 3.0.3, and 3.1-dev0 through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding ("h2_send loop") under a certain set of conditions, as exploited in the wild in 2024.
- LOW
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- NONE
- HIGH
References
Advisory Timeline
- Published
