Bug 2099744 - [OCP 4.8] Request for update to haproxy 2.2.17 to solve major bug with path
Summary: [OCP 4.8] Request for update to haproxy 2.2.17 to solve major bug with path
Keywords:
Status: CLOSED DUPLICATE of bug 2088539
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Networking
Version: 4.8
Hardware: All
OS: All
unspecified
urgent
Target Milestone: ---
: ---
Assignee: aos-network-edge-staff
QA Contact: Hongan Li
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2022-06-21 15:36 UTC by Pamela Escorza
Modified: 2022-08-04 21:58 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2022-06-21 16:24:11 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Pamela Escorza 2022-06-21 15:36:13 UTC 
Description of problem:
Customer has upgrade from ocp 4.6.42 to 4.8.39 and is facing the haproxy bug: 

  . BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
  . https://github.com/haproxy/haproxy/commit/4b8852c70d8c4b7e225e24eb58258a15eb54c26e

OpenShift release version:
OCP 4.8.39
HA-Proxy version 2.2.13-5f3eb59 2021/04/02 - https://haproxy.org/




Actual results:
https://xxxxxx.corp//?authenticationType=....

Expected results:
https://xxxxxx.corp/?authenticationType=....

Impact of the problem:
This is impacting a critical environment for the client which where the development operations was working as expected and is not possible to modified.  

Additional info:
Is it possible to provide a workaround for this issue please?
Comment 1 Andrew McDermott 2022-06-21 16:24:11 UTC 
This is a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=2088539.
That bug fixed a CVE. We cannot undo the CVE fix.

*** This bug has been marked as a duplicate of bug 2088539 ***
Note You need to log in before you can comment on or make changes to this bug.