HAProxy known bugs for version v1.5.14 (maintenance branch 1.5) :  92 

This version (1.5.14) is a release belonging to maintenance branch 1.5 whose latest version is 1.5.19. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2016-12-251.5.19 ⇐ last
2016-05-101.5.18 
2016-04-131.5.17 
2016-03-141.5.16 
2015-11-011.5.15 
2015-07-031.5.14 ⇐ yours
2015-06-261.5.13 
2015-05-021.5.12 
2015-02-011.5.11 
2014-12-311.5.10 
2014-11-261.5.9 
2014-10-311.5.8 
2014-10-301.5.7 
2014-10-181.5.6 
2014-10-081.5.5 
2014-09-021.5.4 
2014-07-251.5.3 
2014-07-121.5.2 
2014-06-241.5.1 
2014-06-191.5.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 1.5 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
92 0 8 36 48

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2016-12-24BUG/MINOR: systemd: potential zombie processes
2016-12-24BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled
2016-12-24BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake
2016-12-24BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect
2016-12-24BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos
2016-12-24BUG/MINOR: cli: dequeue from the proxy when changing a maxconn
2016-12-24BUG/MINOR: cli: fix pointer size when reporting data/transport layer name
2016-12-24BUG/MINOR: cli: properly decrement ref count on tables during failed dumps
2016-12-24BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory
2016-12-24BUG/MEDIUM: connection: check the control layer before stopping polling
2016-12-24BUG/MINOR: stick-table: handle out-of-memory condition gracefully
2016-12-24BUG/MEDIUM: systemd-wrapper: return correct exit codes
2016-12-24BUG/MEDIUM: peers: fix use after free in peer_session_create()
2016-12-24BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed
2016-12-24BUG/MINOR: systemd: check return value of calloc()
2016-12-24BUG/MINOR: systemd: always restore signals before execve()
2016-12-24BUG/MINOR: systemd: make the wrapper return a non-null status code on error
2016-12-24BUG/MINOR: ssl: prevent multiple entries for the same certificate
2016-12-24BUG/MINOR: ssl: Check malloc return code
2016-10-06BUG/MINOR: displayed PCRE version is running release
2016-10-06BUG/MINOR: payload: fix SSLv2 version parser
2016-10-06BUG/MAJOR: stream: properly mark the server address as unset on connect retry
2016-10-06BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table
2016-08-09BUG/MAJOR: compression: initialize avail_in/next_in even during flush
2016-08-09BUG/MEDIUM: stream-int: completely detach connection on connect error
2016-06-30Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()"
2016-06-30BUG/MINOR: init: ensure that FD limit is raised to the max allowed
2016-06-30BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits
2016-06-30BUG/MINOR: http: url32+src should check cli_conn before using it
2016-06-30BUG/MINOR: http: url32+src should use the big endian version of url32
2016-06-30BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
2016-06-08BUG/MINOR: http: add-header: header name copied twice
2016-06-07BUG/MEDIUM: sticktables: segfault in some configuration error cases
2016-05-19BUG/MAJOR: fix listening IP address storage for frontends
2016-05-04BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
2016-05-04BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
2016-05-04BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try)
2016-05-02BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client
2016-04-25BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try)
2016-04-25BUG/MEDIUM: channel: incorrect polling condition may delay event delivery
2016-04-25BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected
2016-04-21BUG/MINOR: fix maxaccept computation according to the frontend process range
2016-04-21BUG/MINOR: listener: stop unbound listeners on startup
2016-04-21BUG/MEDIUM: fix maxaccept computation on per-process listeners
2016-04-11BUG/MAJOR: channel: fix miscalculation of available buffer space (2nd try)
2016-04-11BUG/MINOR : allow to log cookie for tarpit and denied request
2016-03-29BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers
2016-03-29BUG/MINOR: conf: "listener id" expects integer, but its not checked
2016-03-29BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted
2016-03-14BUG/MINOR: log: GMT offset not updated when entering/leaving DST
2016-03-13BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition
2016-03-13BUG/MINOR: standard: Avoid free of non-allocated pointer
2016-03-08BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs
2016-03-08BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port
2016-03-08BUG/MINOR: systemd: propagate the correct signal to haproxy
2016-03-08BUG/MINOR: systemd: report the correct signal in debug message output
2016-03-08BUG/MINOR: systemd: ensure we don't miss signals
2016-02-25BUG/MEDIUM: chunks: always reject negative-length chunks
2016-02-25BUG/MINOR: http: Be sure to process all the data received from a server
2016-02-25BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly
2016-02-25BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation
2016-02-25BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation
2016-02-25BUG: stream_interface: Reuse connection even if the output channel is empty
2016-02-25BUG/CLEANUP: CLI: report the proper field states in "show sess"
2016-02-25BUG/MINOR: stream: don't force retries if the server is DOWN
2016-02-25BUG/MEDIUM: channel: fix miscalculation of available buffer space.
2016-02-25BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week
2016-02-25BUG/MEDIUM: config: Adding validation to stick-table expire value.
2016-02-25BUG/MINOR: chunk: make chunk_dup() always check and set dst->size
2015-12-16BUG/MEDIUM: peers: old stick table updates could be repushed.
2015-12-16BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay.
2015-11-26BUG/MEDIUM: sample: urlp can't match an empty value
2015-11-26BUG/MEDIUM: cli: changing compression rate-limiting must require admin level
2015-11-26BUG/MEDIUM: stream: fix half-closed timeout handling
2015-11-26BUG/MEDIUM: http: don't enable auto-close on the response side
2015-11-18BUG/MEDIUM: http: switch the request channel to no-delay once done.
2015-11-13BUG: http: do not abort keep-alive connections on server timeout
2015-11-05BUG/MINOR: acl: don't use record layer in req_ssl_ver
2015-11-02BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin.
2015-10-29BUG/MEDIUM: config: count memory limits on 64 bits, not 32
2015-10-14BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id
2015-10-14BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers
2015-10-14BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth)
2015-09-28BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop()
2015-09-28BUG/MEDIUM: proxy: ignore stopped peers
2015-09-28BUG/MINOR: config: check that tune.bufsize is always positive
2015-09-28BUG/MEDIUM: acl: always accept match "found"
2015-09-08BUG/MINOR: tools: make str2sa_range() report unresolvable addresses
2015-09-07BUG/MAJOR: http: don't call http_send_name_header() after an error
2015-09-07BUG/MINOR: http: remove stupid HTTP_METH_NONE entry
2015-08-24BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry
2015-08-24BUG/MINOR: http/sample: gmtime/localtime can fail
2015-07-26BUG/MINOR: log: missing some ARGC_* entries in fmt_directives()

Back to the list of branches and versions
Back to the HAProxy page