CVE-2025-32464

CVE-2025-32464

Name

CVE-2025-32464

Description

HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
	https://github.com/haproxy/haproxy/commit/3e3b9eebf871510aee36c3a3336faac2f38c9559
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/04/msg00031.html

Type

URI

https://github.com/haproxy/haproxy/commit/3e3b9eebf871510aee36c3a3336faac2f38c9559

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/04/msg00031.html

CPE URI	Source package	Min version	Max version
	haproxy	>= 2.2	<= 3.1.6

CPE URI

Source package

Min version

Max version

haproxy

>= 2.2

<= 3.1.6

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
haproxy	edge-main	3.0.10-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	edge-main	3.0.9-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	edge-main	3.0.8-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	edge-main	3.0.7-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	edge-main	3.0.6-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.14-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.13-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.12-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.11-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.10-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.9-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.8-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.7-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.21-main	3.0.6-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.18-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.17-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.16-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.15-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.14-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.13-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.20-main	2.8.11-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.19-main	2.8.16-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.19-main	2.8.15-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.19-main	2.8.14-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.19-main	2.8.13-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable
haproxy	3.19-main	2.8.11-r0	Milan P. Stanić <mps@arvanta.net>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

haproxy

edge-main

3.0.10-r0

Milan P. Stanić <mps@arvanta.net>

possibly vulnerable

haproxy

edge-main