cloudfoundry/haproxy-boshrelease

CVE in HAPorxy 1.8.17

pc-jedi opened this issue 5 years ago · 1 comments

pc-jedi commented 5 years ago

There are 2 known CVEs in HAProxy 1.8.17.
https://security-tracker.debian.org/tracker/CVE-2018-20615
https://security-tracker.debian.org/tracker/CVE-2019-11323

Is is possible to upgrade to 1.8.20 or even further?

geofffranks commented 5 years ago

Resolved in 9.6.1