CVE-2025-32464

CVSS v3.1

6.8

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: HAProxy versions 2.2 through 3.1.6

Description: The issue is related to a heap-based buffer overflow in certain uncommon configurations due to the mishandling of the replacement of multiple short patterns with a longer one. This occurs in the sample conv regsub function.

Recommendations: For HAProxy versions 2.2 through 3.1.6, consider updating to a version that includes a fix for the sample conv regsub heap-based buffer overflow issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1025

Related Identifiers

ALT-PU-2025-6339

AZL-59712

BDU:2025-06570

BIT-HAPROXY-2025-32464

CVE-2025-32464

DLA-4135-1

MGASA-2025-0138

OESA-2025-1495

OPENSUSE-SU-2025:15200-1

OPENSUSE-SU-2025_1264-1

OPENSUSE-SU-2025_1338-1

SUSE-SU-2025:1264-1

SUSE-SU-2025:1338-1

SUSE-SU-2025_1264-1

SUSE-SU-2025_1338-1

USN-7431-1

USN-7431-2

Affected Products

Alt Linux

Astra Linux

Debian

Haproxy

Linuxmint

Red Os

Suse

Ubuntu

CVE-2025-32464

Weakness Enumeration

Related Identifiers

Affected Products

References · 43