A vulnerability was found in HAProxy through 2.0.2. This allows attackers to cause a denial of service (ha_panic) via vectors related to htx_manage_client_side_cookies in proto_htx.c.
Created haproxy tracking bugs for this issue:
Affects: fedora-all [bug 1733584]
This flaw only affects haproxy v1.9.0-1.9.8 and v2.0.0-2.0.2. Red Hat Enterprise Linux, Red Hat Software Collections and Red Hat OpenStack Platform do not package these versions and are therefore not vulnerable to this flaw.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):