CVE-2025-32464

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-32464

Severity

Unknown

Description

HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one.

References

https://images.chainguard.dev/security/CGA-wfwf-2qgq-7f34
https://github.com/advisories/GHSA-frg5-h47x-75j9
https://images.chainguard.dev/security/CGA-rgfc-jv84-pg98
https://images.chainguard.dev/security/CGA-84p4-hhch-r929
https://images.chainguard.dev/security/CGA-vvmx-5hmw-j8xc
https://images.chainguard.dev/security/CGA-h2mm-wr5v-xqpw
https://images.chainguard.dev/security/CGA-254c-432x-r6pp
https://images.chainguard.dev/security/CGA-j445-q89m-r8x5
https://github.com/haproxy/haproxy/commit/3e3b9eebf871510aee36c3a3336faac2f38c9559
https://lists.debian.org/debian-lts-announce/2025/04/msg00031.html
https://security-tracker.debian.org/tracker/CVE-2025-32464

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2025-32464

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources