Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests.
An algorithm in a product has an inefficient worst-case computational complexity that may be detrimental to system performance and can be triggered by an attacker, typically using crafted manipulations that ensure that the worst case is being reached.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Red Hat Enterprise Linux 10 | RedHat | haproxy-0:3.0.5-4.el10_1.1 | * |
| Red Hat Enterprise Linux 10.0 Extended Update Support | RedHat | haproxy-0:3.0.5-4.el10_0.1 | * |
| Red Hat Enterprise Linux 9 | RedHat | haproxy-0:2.8.14-1.el9_7.1 | * |
| Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | RedHat | haproxy-0:2.4.7-2.el9_0.3 | * |
| Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions | RedHat | haproxy-0:2.4.17-6.el9_2.3 | * |
| Red Hat Enterprise Linux 9.4 Extended Update Support | RedHat | haproxy-0:2.4.22-3.el9_4.1 | * |
| Red Hat Enterprise Linux 9.6 Extended Update Support | RedHat | haproxy-0:2.4.22-4.el9_6.1 | * |
| Red Hat Ceph Storage 8 | RedHat | rhceph/rhceph-haproxy-rhel9:sha256:eef8a3d296b098659dfdfb64a9e89b9f955015e29d69976eb3f9feffc9304a34 | * |
| Haproxy | Ubuntu | devel | * |
| Haproxy | Ubuntu | jammy | * |
| Haproxy | Ubuntu | noble | * |
| Haproxy | Ubuntu | plucky | * |