Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:alpm/archlinux/haproxy@2.4.2-1
purl pkg:alpm/archlinux/haproxy@2.4.2-1
Next non-vulnerable version 2.4.3-1
Latest non-vulnerable version 2.4.4-1
Risk 3.4
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-93ba-zj92-zqf1
Aliases:
CVE-2021-39240
haproxy: does not ensure that the scheme and path portions of a URI have the expected characters
2.4.3-1
Affected by 0 other vulnerabilities.
VCID-atwp-g4uy-3qgg
Aliases:
CVE-2021-39242
haproxy: it can lead to a situation with an attacker-controlled HTTP Host header because a mismatch between Host and authority is mishandled
2.4.3-1
Affected by 0 other vulnerabilities.
VCID-sy71-5m1g-2yav
Aliases:
CVE-2021-39241
haproxy: an HTTP method name may contain a space followed by the name of a protected resource
2.4.3-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T18:26:36.946572+00:00 Arch Linux Importer Affected by VCID-93ba-zj92-zqf1 https://security.archlinux.org/AVG-2304 38.0.0
2026-04-01T18:26:36.919994+00:00 Arch Linux Importer Affected by VCID-sy71-5m1g-2yav https://security.archlinux.org/AVG-2304 38.0.0
2026-04-01T18:26:36.893135+00:00 Arch Linux Importer Affected by VCID-atwp-g4uy-3qgg https://security.archlinux.org/AVG-2304 38.0.0