Vulnerability identifier: #VU12524
Vulnerability risk: Medium
Exploitation vector: Network
Exploit availability: No
Server applications / IDS/IPS systems, Firewalls and proxy servers
The vulnerability allows a remote unauthenticated attacker to DoS condition on the target system.
The weakness exists in the mux_h2.c source code file due to improper H2 frame length checking. The H2 frame length is checked against the max_frame_size setting instead of being checked against the bufsize. A remote attacker can send a request that submits a large H2 frame, trigger heap-based buffer overflow and cause the service to crash.
Update to version 1.8.8.
Vulnerable software versions
HAProxy: 1.8.0 - 1.8.7
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?