This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.
The remote Red Hat host is missing one or more security updates.
An updated haproxy package that fixes one security issue is now
available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having Moderate
security impact. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available from the
CVE link in the References section.
HAProxy provides high availability, load balancing, and proxying for
TCP and HTTP-based applications.
A buffer overflow flaw was discovered in the way HAProxy handled,
under very specific conditions, data uploaded from a client. A remote
attacker could possibly use this flaw to crash HAProxy.
All haproxy users are advised to upgrade to this updated package,
which contains a backported patch to correct this issue.
See also :
Update the affected haproxy and / or haproxy-debuginfo packages.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : false