CVE-2018-14645

A flaw was discovered in the HPACK decoder of HAProxy, before 1.8.14, that is used for HTTP/2. An out-of-bounds read access in hpack_valid_idx() resulted in a remote crash and denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
redhatCNA
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
VendorProductVersion
haproxyhaproxy
𝑥
≤ 1.8.14
canonicalubuntu_linux
18.04
redhatopenshift
3.10
redhatopenshift_container_platform
3.9
redhatenterprise_linux
7.0
redhatenterprise_linux
7.3
redhatenterprise_linux
7.4
redhatenterprise_linux
7.5
redhatenterprise_linux
7.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
haproxy
bullseye (security)
2.2.9-2+deb11u6
fixed
bullseye
2.2.9-2+deb11u6
fixed
stretch
not-affected
jessie
not-affected
bookworm
2.6.12-1+deb12u1
fixed
bookworm (security)
2.6.12-1+deb12u1
fixed
sid
2.9.11-1
fixed
trixie
2.9.11-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
haproxy
bionic
Fixed 1.8.8-1ubuntu0.2
released
xenial
not-affected
trusty
dne
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHBA-2019:0028
https://access.redhat.com/errata/RHSA-2018:2882
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14645
https://usn.ubuntu.com/3780-1/
https://www.mail-archive.com/haproxy%40formilux.org/msg31253.html
https://access.redhat.com/errata/RHBA-2019:0028
https://access.redhat.com/errata/RHSA-2018:2882
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14645
https://usn.ubuntu.com/3780-1/
https://www.mail-archive.com/haproxy%40formilux.org/msg31253.html