{"id":"USN-8208-1","summary":"haproxy vulnerability","details":"Martino Spagnuolo discovered that HAProxy did not check received body\nlengths in the HTTP/3 parser. A remote attacker could possibly use this\nissue to perform a request smuggling attack and obtain sensitive\ninformation.","modified":"2026-05-20T16:04:02.440636859Z","published":"2026-04-27T12:04:02Z","related":["UBUNTU-CVE-2026-33555"],"upstream":["UBUNTU-CVE-2026-33555"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8208-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-33555"}],"affected":[{"package":{"name":"haproxy","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/haproxy?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.8.16-0ubuntu0.24.04.2"}]}],"versions":["2.6.15-1ubuntu2","2.8.5-1ubuntu1","2.8.5-1ubuntu2","2.8.5-1ubuntu3","2.8.5-1ubuntu3.1","2.8.5-1ubuntu3.2","2.8.5-1ubuntu3.3","2.8.5-1ubuntu3.4","2.8.15-0ubuntu0.24.04.1","2.8.16-0ubuntu0.24.04.1"],"ecosystem_specific":{"binaries":[{"binary_name":"haproxy","binary_version":"2.8.16-0ubuntu0.24.04.2"},{"binary_name":"vim-haproxy","binary_version":"2.8.16-0ubuntu0.24.04.2"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8208-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-33555"}],"ecosystem":"Ubuntu:24.04:LTS"}}},{"package":{"name":"haproxy","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/haproxy?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.12-0ubuntu0.25.10.4"}]}],"versions":["3.0.8-1ubuntu1","3.0.8-1ubuntu1.1","3.0.10-1ubuntu1","3.0.10-1ubuntu2","3.0.10-1ubuntu3","3.0.12-0ubuntu0.25.10.1","3.0.12-0ubuntu0.25.10.3"],"ecosystem_specific":{"binaries":[{"binary_name":"haproxy","binary_version":"3.0.12-0ubuntu0.25.10.4"},{"binary_name":"vim-haproxy","binary_version":"3.0.12-0ubuntu0.25.10.4"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8208-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-33555"}],"ecosystem":"Ubuntu:25.10"}}},{"package":{"name":"haproxy","ecosystem":"Ubuntu:26.04:LTS","purl":"pkg:deb/ubuntu/haproxy?arch=source&distro=resolute"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.2.9-1ubuntu2.1"}]}],"versions":["3.0.10-1ubuntu3","3.2.9-1ubuntu1","3.2.9-1ubuntu2"],"ecosystem_specific":{"binaries":[{"binary_name":"haproxy","binary_version":"3.2.9-1ubuntu2.1"},{"binary_name":"vim-haproxy","binary_version":"3.2.9-1ubuntu2.1"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8208-1.json","cves_map":{"cves":[{"severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}],"id":"CVE-2026-33555"}],"ecosystem":"Ubuntu:26.04:LTS"}}}],"schema_version":"1.7.5"}