Debian DSA-2711-1 : haproxy - several vulnerabilities
Medium Nessus Plugin ID 66936
The remote Debian host is missing a security-related update.
Multiple security issues have been found in HAProxy, a load-balancing reverse proxy : - CVE-2012-2942 Buffer overflow in the header capture code. - CVE-2013-1912 Buffer overflow in the HTTP keepalive code. - CVE-2013-2175 Denial of service in parsing HTTP headers.
Upgrade the haproxy packages. For the oldstable distribution (squeeze), these problems have been fixed in version 1.4.8-1+squeeze1. The stable distribution (wheezy) doesn't contain haproxy.