-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5102-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
March 13, 2022                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : haproxy
CVE ID         : CVE-2022-0711

A flaw was discovered in the way HAProxy, a fast and reliable load
balancing reverse proxy, processes HTTP responses containing the
"Set-Cookie2" header, which can result in an unbounded loop, causing a
denial of service.

For the stable distribution (bullseye), this problem has been fixed in
version 2.2.9-2+deb11u3.

We recommend that you upgrade your haproxy packages.

For the detailed security status of haproxy please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/haproxy

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=WVe1
-----END PGP SIGNATURE-----