CVE-2012-2942

Name of the Vulnerable Software and Affected Versions HAProxy versions prior to 1.4.21

Description The issue is related to a buffer overflow in the trash buffer within the header capture functionality. This occurs when the global.tune.bufsize is set to a value greater than the default and header rewriting is enabled, allowing remote attackers to cause a denial of service and possibly execute arbitrary code.

Recommendations For versions prior to 1.4.21, update to version 1.4.21 or later to resolve the issue. As a temporary workaround, consider disabling header rewriting or setting global.tune.bufsize to its default value to minimize the risk of exploitation.