Search for packages
| purl | pkg:rpm/redhat/haproxy@2.2.24-3.rhaos4.11?arch=el8 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2dh6-y93r-2ucc
Aliases: CVE-2021-38561 GHSA-ppp9-7jff-5vj2 |
golang.org/x/text/language Out-of-bounds Read vulnerability golang.org/x/text/language in golang.org/x/text before 0.3.7 can panic with an out-of-bounds read during BCP 47 language tag parsing. Index calculation is mishandled. If parsing untrusted user input, this can be used as a vector for a denial-of-service attack. | There are no reported fixed by versions. |
|
VCID-bb8w-k2e1-xbht
Aliases: CVE-2023-25725 |
haproxy: request smuggling attack in HTTP/1 header parsing | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:01:38.525577+00:00 | RedHat Importer | Affected by | VCID-2dh6-y93r-2ucc | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-38561.json | 38.0.0 |
| 2026-04-01T13:55:22.272797+00:00 | RedHat Importer | Affected by | VCID-bb8w-k2e1-xbht | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25725.json | 38.0.0 |