Charlie Smurthwaite

**Name of the Vulnerable Software and Affected Versions** HAProxy versions 1.5.x through 1.5.13 HAProxy version 1.6-dev **Description** The issue is related to the `buffer slow realign` function, which does not properly realign a buffer used for pending outgoing data. This allows remote attackers to obtain sensitive information, specifically uninitialized memory contents of previous requests, via a crafted request. **Recommendations** For HAProxy versions 1.5.x through 1.5.13, update to version 1.5.14 or later. For HAProxy version 1.6-dev, consider disabling the `buffer slow realign` function until a patch is available. As a temporary workaround, restrict access to sensitive information to minimize the risk of exploitation.