CVE-2019-11323

CVE-2019-11323

EPSS 1.3%

HAProxy before 1.9.7 mishandles a reload with rotated keys, which triggers use of uninitialized, and very predictable, HMAC keys. This is related to an include/types/ssl_sock.h error.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://git.haproxy.org/?p=haproxy.git%3Ba=commit%3Bh=8ef706502aa2000531d36e4ac56dbdc7c30f718d https://www.mail-archive.com/haproxy%40formilux.org/msg33410.html