HAProxy known bugs for version v2.6.14 (maintenance branch 2.6) : 423

This version (2.6.14) is a release belonging to maintenance branch 2.6 whose latest version is 2.6.22. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

full changelog for 2.6 : here
browse history for 2.6 : here

Other versions in the same branch

This branch contains the following releases :

Date Version Comment

2025-04-22 2.6.22 ⇐ last

2025-01-29 2.6.21

2024-11-08 2.6.20

2024-09-19 2.6.19

2024-06-18 2.6.18

2024-04-05 2.6.17

2023-12-13 2.6.16

2023-08-09 2.6.15

2023-06-09 2.6.14 ⇐ yours

2023-05-02 2.6.13

2023-03-28 2.6.12

2023-03-17 2.6.11

2023-03-10 2.6.10

2023-02-14 2.6.9

2023-01-24 2.6.8

2022-12-02 2.6.7

2022-09-22 2.6.6

2022-09-03 2.6.5

2022-08-22 2.6.4

2022-08-19 2.6.3

2022-07-22 2.6.2

2022-06-21 2.6.1

2022-05-31 2.6.0

Date	Version	Comment
2025-04-22	2.6.22	⇐ last
2025-01-29	2.6.21
2024-11-08	2.6.20
2024-09-19	2.6.19
2024-06-18	2.6.18
2024-04-05	2.6.17
2023-12-13	2.6.16
2023-08-09	2.6.15
2023-06-09	2.6.14	⇐ yours
2023-05-02	2.6.13
2023-03-28	2.6.12
2023-03-17	2.6.11
2023-03-10	2.6.10
2023-02-14	2.6.9
2023-01-24	2.6.8
2022-12-02	2.6.7
2022-09-22	2.6.6
2022-09-03	2.6.5
2022-08-22	2.6.4
2022-08-19	2.6.3
2022-07-22	2.6.2
2022-06-21	2.6.1
2022-05-31	2.6.0

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.6 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in this version by category :

Total CRITICAL MAJOR MEDIUM MINOR

423 0 14 147 262

Total	CRITICAL	MAJOR	MEDIUM	MINOR
423	0	14	147	262

Click on the subjects below to get the full description of the bug :

Merge date	Subject - Severity (minor, medium, major, critical)
2025-04-22	BUG/MINOR: mux-quic: fix BUG_ON() crash on init failure after app-ops
2025-04-22	BUG/MINOR: mux-h2: prevent past scheduling with idle connections
2025-04-22	BUG/MINOR: quic: do not crash on CRYPTO ncbuf alloc failure
2025-04-22	BUG/MINOR: h3: reject request URI with invalid characters
2025-04-22	BUG/MINOR: h3: reject invalid :path in request
2025-04-22	BUG/MINOR: h3: filter upgrade connection header
2025-04-22	BUG/MEDIUM: h3: trim whitespaces in header value prior to QPACK encoding
2025-04-22	BUG/MEDIUM: h3: trim whitespaces when parsing headers value
2025-04-17	BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers (2)
2025-04-17	BUG/MINOR: hlua: fix invalid errmsg use in hlua_init()
2025-04-17	BUG/MINOR: backend: do not use the source port when hashing clientip
2025-04-17	BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refs
2025-04-17	BUG/MEDIUM: backend: fix reuse with set-dst/set-dst-port
2025-04-17	BUG/MINOR: backend: do not overwrite srv dst address on reuse
2025-04-17	BUG/MINOR: log: fix gcc warn about truncating NUL terminator while init char arrays
2025-04-17	BUG/MEDIUM: peers: prevent learning expiration too far in futur from unsync node
2025-04-17	BUG/MINOR: peers: fix expire learned from a peer not converted from ms to ticks
2025-04-17	BUG/MEDIUM: hlua/cli: fix cli applet UAF in hlua_applet_wakeup()
2025-04-17	BUG/MINOR: namespace: handle a possible strdup() failure
2025-04-17	BUG/MINOR: server: dont return immediately from parse_server() when skipping checks
2025-04-17	BUG/MINOR: cfgparse/peers: properly handle ignored local peer case
2025-04-17	BUG/MINOR: cfgparse/peers: fix inconsistent check for missing peer server
2025-04-17	BUG/MEIDUM: startup: return to initial cwd only after check_config_validity()
2025-04-17	BUG/MINOR: server: check for either proxy-protocol v1 or v2 to send hedaer
2025-04-17	BUG/MINOR: h2: always trim leading and trailing LWS in header values
2025-04-17	BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers
2025-04-17	BUG/MINOR: cfgparse: fix NULL ptr dereference in cfg_parse_peers
2025-04-17	BUG/MINOR: stats-json: Define JSON_INT_MAX as a signed integer
2025-04-17	BUG/MINOR: flt-trace: Support only one name option
2025-04-17	BUG/MINOR: auth: Fix a leak on error path when parsing user's groups
2025-04-17	BUG/MINOR: config/userlist: Support one 'users' option for 'group' directive
2025-04-17	BUG/MINOR: cli: Fix a possible infinite loop in _getsocks()
2025-04-17	BUG/MINOR: cli: Fix memory leak on error for _getsocks command
2025-04-17	BUG/MINOR: tcp-rules: Don't forward close during tcp-response content rules eval
2025-04-17	BUG/MINOR: quic: prevent crash on conn access after MUX init failure
2025-04-17	BUG/MINOR: fcgi: Don't set the status to 302 if it is already set
2025-04-17	BUG/MEDIUM: filters: Handle filters registered on data with no payload callback
2025-04-17	BUG/MINOR: cli: Wait for the last ACK when FDs are xferred from the old worker
2025-04-17	BUG/MINOR: quic: fix CRYPTO payload size calcul for encoding
2025-04-17	BUG/MINOR: quic: reserve length field for long header encoding
2025-04-17	BUG/MINOR: server: fix the "server-template" prefix memory leak
2025-04-16	BUG/MEDIUM: thread: use pthread_self() not ha_pthread[tid] in set_affinity
2025-04-16	BUG/MEDIUM: htx: wrong count computation in htx_xfer_blks()
2025-04-16	BUG/MEDIUM: fd: mark FD transferred to another process as FD_CLONED
2025-04-16	BUG/MEDIUM: clock: make sure now_ms cannot be TICK_ETERNITY
2025-02-19	BUG/MEDIUM: spoe: Don't wakeup idle applets in loop during stopping
2025-02-19	BUG/MINOR: spoe: Allow applet creation when closing the last one during stopping
2025-02-19	BUG/MINOR: spoe: Check the shared waiting queue to shut applets during stopping
2025-02-19	BUG/MINOR: http-ana: Disable fast-fwd for unfinished req waiting for upgrade
2025-02-19	BUG/MEDIUM: mux-h1/mux-h2: Reject upgrades with payload on H2 side only
2025-02-19	BUG/MINOR: h2: reject extended connect for h2c protocol
2025-02-19	BUG/MINOR: h1: do not forward h2c upgrade header token
2025-02-19	BUG/MINOR: ssl_sock: fix xprt_set_used() to properly clear the TASK_F_USR1 bit
2025-02-11	BUG/MEDIUM: ssl: chosing correct certificate using RSA-PSS with TLSv1.3
2025-01-28	BUG/MINOR: stream: Properly handle "on-marked-up shutdown-backup-sessions"
2025-01-28	BUG/MINOR: ssl: put ssl_sock_load_ca under SSL_NO_GENERATE_CERTIFICATES
2025-01-28	BUG/MINOR: quic: do not increase congestion window if app limited
2025-01-23	MINOR: quic: Add a BUG_ON() on quic_tx_packet refcount
2025-01-23	BUG/MINOR: quic: ensure a detached coalesced packet can't access its neighbours
2025-01-23	BUG/MAJOR: quic: reject too large CRYPTO frames
2025-01-23	BUG/MEDIUM: stktable: fix missing lock on some table converters
2025-01-23	BUG/MINOR: quic: reject NEW_TOKEN frames from clients
2025-01-23	BUG/MINOR: stktable: fix big-endian compatiblity in smp_to_stkey()
2025-01-09	BUG/MEDIUM: queue: Make process_srv_queue return the number of streams
2025-01-09	BUG/MEDIUM: queues: Do not use pendconn_grab_from_px().
2025-01-09	BUG/MEDIUM: queues: Make sure we call process_srv_queue() when leaving
2025-01-09	BUG/MEDIUM: stconn: Don't forward shut for SC in connecting state
2025-01-09	BUG/MINOR: stream: unblock stream on wait-for-handshake completion
2025-01-09	BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}
2025-01-09	BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections
2025-01-09	BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks
2025-01-09	BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2025-01-09	BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2025-01-09	BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2025-01-09	BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set
2025-01-09	BUG/MEDIUM: http-ana: Don't release too early the L7 buffer
2025-01-09	BUG/MAJOR: quic: fix wrong packet building due to already acked frames
2025-01-09	BUG/MEDIUM: h3: Increase max number of headers when sending headers
2025-01-09	BUG/MEDIUM: h3: Properly limit the number of headers received
2025-01-09	BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2025-01-09	BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2025-01-09	BUG/MINOR: http-ana: Adjust the server status before the L7 retries
2025-01-09	BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2025-01-09	BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2025-01-09	BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list
2025-01-09	BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI
2025-01-09	BUG/MEDIUM: queue: make sure never to queue when there's no more served conns
2025-01-09	BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server
2025-01-09	BUG/MEDIUM: stream: make stream_shutdown() async-safe
2024-11-08	BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown
2024-11-06	BUG/MINOR: http-ana: Report internal error if an action yields on a final eval
2024-11-06	BUG/MINOR: ssl/cli: 'set ssl cert' does not check the transaction name correctly
2024-11-06	BUG/MEDIUM: server: fix race on servers_list during server deletion
2024-11-06	BUG/MINOR: server: fix dynamic server leak with check on failed init
2024-11-06	BUG/MEDIUM: connection/http-reuse: fix address collision on unhandled address families
2024-11-06	BUG/MINOR: mworker: fix mworker-max-reloads parser
2024-11-06	BUG/MINOR: http-ana: Don't report a server abort if response payload is invalid
2024-11-06	BUG/MEDIUM: hlua: properly handle sample func errors in hlua_run_sample_{fetch,conv}()
2024-11-06	BUG/MEDIUM: hlua: make hlua_ctx_renew() safe
2024-11-06	BUG/MEDIUM: server: server stuck in maintenance after FQDN change
2024-11-06	BUG/MINOR: cfgparse-global: fix allowed args number for setenv
2024-11-06	BUG/MEDIUM: cli: Deadlock when setting frontend maxconn
2024-09-18	BUG/MINOR: cfgparse-listen: fix option httpslog override warning message
2024-09-17	BUG/MEDIUM: promex: Wait to have the request before sending the response
2024-09-17	BUG/MEDIUM: cache/stats: Wait to have the request before sending the response
2024-09-17	BUG/MEDIUM: queue: implement a flag to check for the dequeuing
2024-09-17	BUG/MINOR: polling: fix time reporting when using busy polling
2024-09-17	BUG/MEDIUM: pattern: prevent UAF on reused pattern expr
2024-09-17	BUG/MINOR: pattern: prevent const sample from being tampered in pat_match_beg()
2024-09-17	BUG/MINOR: pattern: do not leave a leading comma on "set" error messages
2024-09-17	BUG/MINOR: pattern: pat_ref_set: return 0 if err was found
2024-09-17	BUG/MINOR: pattern: pat_ref_set: fix UAF reported by coverity
2024-09-17	BUG/MINOR: h3: properly reject too long header responses
2024-09-17	BUG/MINOR: proto_uxst: delete fd from fdtab if listen() fails
2024-09-17	BUG/MINOR: mux-quic: do not send too big MAX_STREAMS ID
2024-09-17	BUG/MINOR: proto_tcp: keep error msg if listen() fails
2024-09-17	BUG/MINOR: proto_tcp: delete fd from fdtab if listen() fails
2024-09-17	BUG/MINOR: quic/trace: make quic_conn_enc_level_init() emit NEW not CLOSE
2024-09-17	BUG/MINOR: trace/quic: make "qconn" selectable as a lockon criterion
2024-09-17	BUG/MINOR: trace: automatically start in waiting mode with "start "
2024-09-17	BUG/MINOR: trace/quic: permit to lock on frontend/connect/session etc
2024-09-17	BUG/MINOR: trace/quic: enable conn/session pointer recovery from quic_conn
2024-09-17	BUG/MINOR: fcgi-app: handle a possible strdup() failure
2024-09-17	BUG/MEDIUM: h2: Only report early HTX EOM for tunneled streams
2024-09-17	BUG/MEDIUM: quic: prevent conn freeze on 0RTT undeciphered content
2024-09-17	BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli
2024-09-17	BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready
2024-07-31	BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
2024-07-31	BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()
2024-07-31	BUG/MINOR: cli: Atomically inc the global request counter between CLI commands
2024-07-31	BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution
2024-07-31	BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter
2024-07-31	BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread
2024-07-31	BUG/MEDIUM: h1: Reject empty Transfer-encoding header
2024-07-31	BUG/MINOR: h1: Reject empty coding name as last transfer-encoding value
2024-07-31	BUG/MINOR: h1: Fail to parse empty transfer coding names
2024-07-31	BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature
2024-07-31	BUG/MINOR: jwt: fix variable initialisation
2024-07-31	BUG/MINOR: jwt: don't try to load files with HMAC algorithm
2024-07-31	BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)
2024-07-03	BUG/MEDIUM: h3: ensure the ":scheme" pseudo header is totally valid
2024-07-03	BUG/MEDIUM: h3: ensure the ":method" pseudo header is totally valid
2024-07-03	BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()
2024-07-03	BUG/MINOR: quic: fix BUG_ON() on Tx pkt alloc failure
2024-07-03	BUG/MINOR: mux-quic: fix crash on qcs SD alloc failure
2024-07-03	BUG/MINOR: quic: fix computed length of emitted STREAM frames
2024-06-19	BUG/MEDIUM: cli: fix cli_output_msg() regression
2024-06-07	BUG/MINOR: haproxy: only tid 0 must not sleep if got signal
2024-06-07	BUG/MEDIUM: quic: don't blindly rely on unaligned accesses
2024-06-07	BUG/MAJOR: connection: fix server used_conns with H2 + reuse safe
2024-06-07	BUG/MEDIUM: http_ana: ignore NTLM for reuse aggressive/always and no H1
2024-06-07	BUG/MAJOR: server: do not delete srv referenced by session
2024-06-07	BUG/MEDIUM: quic: fix connection freeze on post handshake
2024-06-07	BUG/MEDIUM: server: fix dynamic servers initial settings
2024-06-07	BUG/MEDIUM: ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration
2024-06-07	BUG/MINOR: hlua: fix leak in hlua_ckch_set() error path
2024-06-07	BUG/MINOR: hlua: prevent LJMP in hlua_traceback()
2024-06-07	BUG/MINOR: hlua: fix unsafe hlua_pusherror() usage
2024-06-07	BUG/MINOR: hlua: don't use lua_pushfstring() when we don't expect LJMP
2024-06-07	BUG/MINOR: quic: prevent crash on qc_kill_conn()
2024-06-07	BUG/MINOR: hlua: use CertCache.set() from various hlua contexts
2024-06-07	BUG/MINOR: tools: fix possible null-deref in env_expand() on out-of-memory
2024-06-07	BUG/MINOR: tcpcheck: report correct error in tcp-check rule parser
2024-06-07	BUG/MINOR: cfgparse: remove the correct option on httpcheck send-state warning
2024-06-07	BUG/MINOR: activity: fix Delta_calls and Delta_bytes count
2024-06-07	BUG/MINOR: ssl/ocsp: init callback func ptr as NULL
2024-06-07	BUG/MINOR: server: Don't reset resolver options on a new default-server line
2024-06-07	BUG/MINOR: http-htx: Support default path during scheme based normalization
2024-06-07	BUG/MINOR: quic: adjust restriction for stateless reset emission
2024-06-07	BUG/MEDIUM: mux-quic: Create sedesc in same time of the QUIC stream
2024-06-07	BUG/MEDIUM: quic_tls: prevent LibreSSL < 4.0 from negotiating CHACHA20_POLY1305
2024-06-07	BUG/MAJOR: quic: Crash with TLS_AES_128_CCM_SHA256 (libressl only)
2024-06-07	BUG/MINOR: connection: parse PROXY TLV for LOCAL mode
2024-06-07	BUG/MINOR: stats: Don't state the 303 redirect response is chunked
2024-06-07	BUG/MINOR: htpp-ana/stats: Specify that HTX redirect messages have a C-L header
2024-06-07	BUG/MEDIUM: fd: prevent memory waste in fdtab array
2024-06-07	BUG/MEDIUM: h1: Reject CONNECT request if the target has a scheme
2024-06-07	BUG/MINOR: h1: Check authority for non-CONNECT methods only if a scheme is found
2024-06-07	BUG/MEDIUM: stick-tables: properly mark stktable_data as packed
2024-06-07	BUG/MEDIUM: htx: mark htx_sl as packed since it may be realigned
2024-06-07	BUG/MINOR: qpack: fix error code reported on QPACK decoding failure
2024-06-07	BUG/MINOR: mux-quic: fix error code on shutdown for non HTTP/3
2024-06-07	BUG/MINOR: log: smp_rgs array issues with inherited global log directives
2024-06-07	BUG/MINOR: log: keep the ref in dup_logger()
2024-06-07	BUG/MINOR: mworker: reintroduce way to disable seamless reload with -x /dev/null
2024-06-07	BUG/MINOR: h1: fix detection of upper bytes in the URI
2024-06-07	BUG/MINOR: backend: use cum_sess counters instead of cum_conn
2024-06-07	BUG/MINOR: fd: my_closefrom() on Linux could skip contiguous series of sockets
2024-06-07	BUG/MINOR: sock: handle a weird condition with connect()
2024-06-07	BUG/MINOR: stconn: Fix sc_mux_strm() return value
2024-06-07	BUG/MEDIUM: cache: Vary not working properly on anything other than accept-encoding
2024-04-19	BUG/MINOR: server: fix slowstart behavior
2024-04-19	BUG/MEDIUM: peers: Fix exit condition when max-updates-at-once is reached
2024-04-19	BUG/MEDIUM: evports: do not clear returned events list on signal
2024-04-19	BUG/MEDIUM: stconn: Don't forward channel data if input data must be filtered
2024-04-19	BUG/MEDIUM: grpc: Fix several unaligned 32/64 bits accesses
2024-04-19	BUG/MEDIUM: peers/trace: fix crash when listing event types
2024-04-19	BUG/MINOR: debug: make sure DEBUG_STRICT=0 does work as documented
2024-04-19	BUG/MINOR: http-ana: Fix TX_L7_RETRY and TX_D_L7_RETRY values
2024-04-19	BUG/MEDIUM: http-ana: Deliver 502 on keep-alive for fressh server connection
2024-04-19	BUG/MINOR: log: invalid snprintf() usage in sess_build_logline()
2024-04-19	BUG/MINOR: tools/log: invalid encode_{chunk,string} usage
2024-04-19	BUG/MINOR: log: fix lf_text_len() truncate inconsistency
2024-04-08	BUG/MEDIUM: cli: Warn if pipelined commands are delimited by a \n
2024-04-08	BUG/MINOR: ext-check: cannot use without preserve-env
2024-04-08	BUG/MEDIUM: quic: remove unsent data from qc_stream_desc buf
2024-04-08	BUG/MEDIUM: mux-quic: report early error on stream
2024-04-08	BUG/MEDIUM: cli: fix once for all the problem of missing trailing LFs
2024-04-05	BUG/MINOR: proxy: fix logformat expression leak in use_backend rules
2024-04-05	BUG/MEDIUM: hlua: streams don't support mixing lua-load with lua-load-per-thread (2nd try)
2024-04-05	DEBUG: lua: precisely identify if stream is stuck inside lua or not
2024-04-03	BUG/MINOR: backend: properly handle redispatch 0
2024-04-03	BUG/MINOR: server: ignore 'enabled' for dynamic servers
2024-04-03	BUG/MINOR: server: 'source' interface ignored from 'default-server' directive
2024-04-03	BUG/MEDIUM: mux-fcgi: Properly handle EOM flag on end-of-trailers HTX block
2024-04-03	BUG/MINOR: mux-quic: close all QCS before freeing QCC tasklet
2024-04-03	BUG/MINOR: session: ensure conn owner is set after insert into session
2024-04-03	BUG/MEDIUM: spoe: Return an invalid frame on recv if size is too small
2024-04-03	BUG/MINOR: spoe: Be sure to be able to quickly close IDLE applets on soft-stop
2024-04-03	BUG/MEDIUM: spoe: Don't rely on stream's expiration to detect processing timeout
2024-04-03	BUG/MINOR: listener: Don't schedule frontend without task in listener_release()
2024-04-03	BUG/MINOR: listener: Wake proxy's mngmt task up if necessary on session release
2024-04-03	BUG/MINOR: hlua: fix missing lock in hlua_filter_delete()
2024-04-03	BUG/MINOR: hlua: missing lock in hlua_filter_new()
2024-04-03	BUG/MINOR: hlua: segfault when loading the same filter from different contexts
2024-04-03	BUG/MINOR: ssl: fix possible ctx memory leak in sample_conv_aes_gcm()
2024-04-03	BUG/MINOR: cfgparse: report proper location for log-format-sd errors
2024-04-03	BUG/MINOR: ssl/cli: typo in new ssl crl-file CLI description
2024-04-03	BUG/MAJOR: hlua: improper lock usage with hlua_ctx_resume()
2024-04-03	BUG/MEDIUM: hlua: improper lock usage with SET_SAFE_LJMP()
2024-04-03	BUG/MINOR: hlua: improper lock usage in hlua_filter_new()
2024-04-03	BUG/MINOR: hlua: improper lock usage in hlua_filter_callback()
2024-04-03	BUG/MINOR: hlua: fix possible crash in hlua_filter_new() under load
2024-04-03	BUG/MINOR: hlua: don't use lua_tostring() from unprotected contexts
2024-04-03	BUG/MINOR: hlua: fix unsafe lua_tostring() usage with empty stack
2024-04-03	BUG/MINOR: tools: seed the statistical PRNG slightly better
2024-04-03	BUG/MINOR: hlua: Fix log level to the right value when set via TXN:set_loglevel
2024-04-03	BUG/MINOR: ssl/cli: duplicate cleaning code in cli_parse_del_crtlist
2024-04-03	BUG/MINOR: ist: only store NUL byte on succeeded alloc
2024-04-03	BUG/MAJOR: server: fix stream crash due to deleted server
2024-04-03	BUG/MINOR: stats: drop srv refcount on early release
2024-04-03	BUG/MINOR: ist: allocate nul byte on istdup
2024-04-03	BUG/MEDIUM: hlua: Don't loop if a lua socket does not consume received data
2024-04-03	BUG/MEDIUM: hlua: Be able to garbage collect uninitialized lua sockets
2024-04-03	BUG/MEDIUM: applet: Immediately free appctx on early error
2024-04-03	BUG/MINOR: qpack: reject invalid dynamic table capacity
2024-04-03	BUG/MINOR: qpack: reject invalid increment count decoding
2024-04-03	BUG/MINOR: quic: reject HANDSHAKE_DONE as server
2024-04-03	BUG/MINOR: quic: reject unknown frame type
2024-04-03	BUG/MAJOR: promex: fix crash on deleted server
2024-04-03	BUG/MINOR: diag: run the final diags before quitting when using -c
2024-04-03	BUG/MEDIUM: quic: Wrong K CUBIC calculation.
2024-04-03	BUG/MINOR: quic: fix possible integer wrap around in cubic window calculation
2024-04-03	BUG/MINOR: quic: Wrong ack ranges handling when reaching the limit.
2024-04-03	BUG/MEDIUM: quic: fix crash on invalid qc_stream_buf_free() BUG_ON
2024-04-03	BUG/MEDIUM: qpack: allow 6xx..9xx status codes
2024-04-03	BUG/MEDIUM: h3: do not crash on invalid response status code
2024-04-03	BUG/MINOR: h3: fix checking on NULL Tx buffer
2024-04-03	BUG/MINOR: ssl: Clear the ckch instance when deleting a crt-list line
2024-04-03	BUG/MAJOR: ssl_sock: Always clear retry flags in read/write functions
2024-04-03	BUG/MEDIUM: h1: always reject the NUL character in header values
2024-04-03	BUG/MEDIUM: h1: Don't support LF only to mark the end of a chunk size
2024-04-03	BUG/MINOR: h1: Don't support LF only at the end of chunks
2024-04-03	BUG/MINOR: h1-htx: properly initialize the err_pos field
2024-04-03	BUG/MEDIUM: pool: fix rare risk of deadlock in pool_flush()
2024-04-03	BUG/MINOR: jwt: fix jwt_verify crash on 32-bit archs
2024-04-03	BUG/MINOR: vars/cli: fix missing LF after "get var" output
2024-04-03	BUG/MEDIUM: cli: some err/warn msg dumps add LR into CSV output on stat's CLI
2024-04-03	MINOR: debug: make BUG_ON() catch build errors even without DEBUG_STRICT
2024-01-19	BUG/MINOR: mux-quic: do not prevent non-STREAM sending on flow control
2024-01-19	BUG/MEDIUM: h3: fix regression which completely prevents any send
2024-01-17	BUG/MEDIUM: spoe: Never create new spoe applet if there is no server up
2024-01-17	BUG/MEDIUM: stconn: Forward shutdown on write timeout only if it is forwardable
2024-01-17	BUG/MEDIUM: h3: fix incorrect snd_buf return value
2024-01-17	BUG/MINOR: h3: close connection on sending alloc errors
2024-01-17	BUG/MINOR: h3: properly handle alloc failure on finalize
2024-01-17	BUG/MINOR: h3: close connection on header list too big
2024-01-17	BUG/MEDIUM: stats: unhandled switching rules with TCP frontend
2024-01-17	BUG/MINOR: resolvers: default resolvers fails when network not configured
2024-01-17	BUG/MEDIUM: mux-h2: Report too large HEADERS frame only when rxbuf is empty
2024-01-17	BUG/MINOR: mworker/cli: fix set severity-output support
2024-01-17	BUG/MEDIUM: proxy: always initialize the default settings after init
2024-01-17	BUG/MEDIUM: mworker: set the master variable earlier
2024-01-17	BUG/MEDIUM: connection: report connection errors even when no mux is installed
2023-12-13	BUG/MINOR: quic: Possible leak of TX packets under heavy load
2023-12-13	BUG/MEDIUM: quic: Avoid some crashes upon TX packet allocation failures
2023-12-13	BUG/MINOR: quic: Possible memory leak from TX packets
2023-12-13	BUG/MEDIUM: pattern: don't trim pools under lock in pat_ref_purge_range()
2023-12-13	BUG/MINOR: cache: Remove incomplete entries from the cache when stream is closed
2023-12-13	BUG/MINOR: sample: Make the `word` converter compatible with `-m found`
2023-12-13	BUG/MINOR: cfgparse-listen: fix warning being reported as an alert
2023-12-13	BUG/MINOR: config: Stopped parsing upon unmatched environment variables
2023-12-13	BUG/MINOR: quic_tp: fix preferred_address decoding
2023-12-13	BUG/MINOR: h3: always reject PUSH_PROMISE
2023-12-13	BUG/MINOR: quic: fix CONNECTION_CLOSE_APP encoding
2023-12-13	BUG/MINOR: server: do not leak default-server in defaults sections
2023-12-13	BUG/MEDIUM: quic: Possible crash for connections to be killed
2023-12-13	BUG/MINOR: sock: mark abns sockets as non-suspendable and always unbind them
2023-12-13	BUG/MINOR: startup: set GTUNE_SOCKET_TRANSFER correctly
2023-12-13	BUG/MINOR: proxy/stktable: missing frees on proxy cleanup
2023-12-13	BUG/MINOR: stream/cli: report correct stream age in "show sess"
2023-12-13	BUG/MEDIUM: mux-fcgi: fail earlier on malloc in takeover()
2023-12-13	BUG/MEDIUM: mux-h1: fail earlier on malloc in takeover()
2023-12-13	BUG/MEDIUM: mux-h2: fail earlier on malloc in takeover()
2023-12-13	BUG/MEDIUM: quic: fix sslconns on quic_conn alloc failure
2023-12-13	BUG/MEDIUM: quic: fix actconn on quic_conn alloc failure
2023-12-08	BUG/MINOR: sink: don't learn srv port from srv addr
2023-12-08	BUG/MEDIUM: quic: Possible crashes when sending too short Initial packets
2023-12-08	BUG/MEDIUM: quic: Avoid trying to send ACK frames from an empty ack ranges tree
2023-12-08	BUG/MINOR: quic: idle timer task requeued in the past
2023-12-08	BUG/MINOR: ssl: use a thread-safe sslconns increment
2023-12-08	BUG/MINOR: mux-quic: fix early close if unset client timeout
2023-12-08	BUG/MINOR: quic: do not consider idle timeout on CLOSING state
2023-11-20	BUG/MINOR: stconn: Use HTX-aware channel's functions to get info on buffer
2023-11-20	BUG/MINOR: stconn: Fix streamer detection for HTX streams
2023-11-20	BUG/MEDIUM: stream: Don't call mux .ctl() callback if not implemented
2023-11-20	BUG/MINOR: http-client: Don't forget to commit changes on HTX message
2023-11-20	BUG/MEDIUM: stream: Properly handle abortonclose when set on backend only
2023-11-20	BUG/MINOR: stconn: Handle abortonclose if backend connection was already set up
2023-11-20	BUG/MEDIUM: applet: Remove appctx from buffer wait list on release
2023-11-20	BUG/MEDIUM: pool: fix releasable pool calculation when overloaded
2023-11-20	BUG/MINOR: mux-h1: Properly handle http-request and http-keep-alive timeouts
2023-11-20	BUG/MINOR: stick-table/cli: Check for invalid ipv4 key
2023-11-20	BUG/MINOR: cfgparse/stktable: fix error message on stktable_init() failure
2023-11-20	BUG/MINOR: stktable: missing free in parse_stick_table()
2023-11-20	BUG/MINOR: tcpcheck: Report hexstring instead of binary one on check failure
2023-11-20	BUG/MEDIUM: ssl: segfault when cipher is NULL
2023-11-20	BUG/MINOR: ssl: suboptimal certificate selection with TLSv1.3 and dual ECDSA/RSA
2023-11-20	BUG/MEDIUM: server: "proto" not working for dynamic servers
2023-11-20	BUG/MINOR: ssl: load correctly @system-ca when ca-base is define
2023-10-27	BUG/MINOR: mux-h2: update tracked counters with req cnt/req err
2023-10-27	BUG/MINOR: mux-h2: commit the current stream ID even on reject
2023-10-27	BUG/MEDIUM: peers: Fix synchro for huge number of tables
2023-10-27	BUG/MEDIUM: peers: Be sure to always refresh recconnect timer in sync task
2023-10-27	BUG/MINOR: mux-h2: fix http-request and http-keep-alive timeouts again
2023-10-27	BUG/MEDIUM: mux-h2: Don't report an error on shutr if a shutw is pending
2023-10-27	BUG/MINOR: mux-h2: make up other blocked streams upon removal from list
2023-10-27	BUG/MINOR: mux-quic: fix free on qcs-new fail alloc
2023-10-27	BUG/MINOR: h3: strengthen host/authority header parsing
2023-10-27	BUG/MINOR: mux-quic: support initial 0 max-stream-data
2023-10-27	BUG/MINOR: quic: reject packet with no frame
2023-10-27	BUG/MINOR: quic: Avoid crashing with unsupported cryptographic algos
2023-10-27	BUG/MINOR: hq-interop: simplify parser requirement
2023-10-27	BUG/MEDIUM: h1: Ignore C-L value in the H1 parser if T-E is also set
2023-10-27	BUG/MINOR: mux-h1: Ignore C-L when sending H1 messages if T-E is also set
2023-10-27	BUG/MEDIUM: hlua: Initialize appctx used by a lua socket on connect only
2023-10-17	BUG/MEDIUM: quic_conn: let the scheduler kill the task when needed
2023-10-06	BUG/MEDIUM: actions: always apply a longest match on prefix lookup
2023-10-04	BUILD: bug: make BUG_ON() void to avoid a rare warning
2023-10-04	BUG/MEDIUM: server/cli: don't delete a dynamic server that has streams
2023-10-04	BUG/MINOR: server: add missing free for server->rdr_pfx
2023-10-04	BUG/MAJOR: mux-h2: Report a protocol error for any DATA frame before headers
2023-10-04	BUG/MINOR: freq_ctr: fix possible negative rate with the scaled API
2023-10-04	BUG/MINOR: promex: fix backend_agg_check_status
2023-10-04	BUG/MEDIUM: mux-fcgi: Don't swap trash and dbuf when handling STDERR records
2023-10-04	BUG/MINOR: hlua/init: coroutine may not resume itself
2023-10-04	BUG/MEDIUM: hlua: don't pass stale nargs argument to lua_resume()
2023-10-04	Revert "BUG/MEDIUM: quic: missing check of dcid for init pkt including a token"
2023-10-04	BUG/MEDIUM: hlua: streams don't support mixing lua-load with lua-load-per-thread
2023-10-04	BUG/MINOR: quic: Wrong cluster secret initialization
2023-10-04	BUG/MINOR: quic: Leak of frames to send.
2023-09-07	BUG/MINOR: quic: Wrong RTT computation (srtt and rrt_var)
2023-09-07	BUG/MINOR: hlua/action: incorrect message on E_YIELD error
2023-09-07	BUG/MEDIUM: stconn/stream: Forward shutdown on write timeout
2023-09-07	BUG/MINOR: quic: Wrong RTT adjusments
2023-09-07	BUG/MEDIUM: h1-htx: Ensure chunked parsing with full output buffer
2023-09-07	BUG/MAJOR: quic: Really ignore malformed ACK frames.
2023-09-07	BUG/MINOR: quic: Possible skipped RTT sampling
2023-09-07	BUG/MEDIUM: stconn: Don't block sends if there is a pending shutdown
2023-09-07	BUG/MEDIUM: stconn: Wake applets on sending path if there is a pending shutdown
2023-09-07	BUG/MINOR: ssl/cli: can't find ".crt" files when replacing a certificate
2023-09-07	BUG/MINOR: ssl_sock: fix possible memory leak on OOM
2023-09-07	BUG/MINOR: hlua_fcn: potentially unsafe stktable_data_ptr usage
2023-09-07	BUG/MINOR: stktable: allow sc-set-gpt(0) from tcp-request connection
2023-09-07	BUG/MINOR: hlua: fix invalid use of lua_pop on error paths
2023-08-09	BUG/MINOR: http: skip leading zeroes in content-length values
2023-08-09	BUG/MINOR: h3: reject more chars from the :path pseudo header
2023-08-09	BUG/MINOR: h2: reject more chars from the :path pseudo header
2023-08-09	BUG/MINOR: h1: do not accept '#' as part of the URI component
2023-08-09	BUG/MAJOR: http: reject any empty content-length header value
2023-08-09	BUG/MAJOR: h3: reject header values containing invalid chars
2023-08-09	BUG/MAJOR: http-ana: Get a fresh trash buffer for each header value replacement
2023-08-09	BUG/MEDIUM: h3: Be sure to handle fin bit on the last DATA frame
2023-08-09	BUG/MINOR: chunk: fix chunk_appendf() to not write a zero if buffer is full
2023-08-09	BUG/MEDIUM: h3: Properly report a C-L header was found to the HTX start-line
2023-07-21	BUG/MEDIUM: listener: Acquire proxy's lock in relax_listener() if necessary
2023-07-21	BUG/MINOR: quic: Missing parentheses around PTO probe variable.
2023-07-21	BUG/MINOR: h1-htx: Return the right reason for 302 FCGI responses
2023-07-21	BUG/MINOR: hlua: add check for lua_newstate
2023-07-21	BUG/MINOR: http: Return the right reason for 302
2023-07-21	BUG/MINOR: sample: Fix wrong overflow detection in add/sub conveters
2023-07-21	BUG/MINOR: hlua: hlua_yieldk ctx argument should support pointers
2023-07-21	BUG/MEDIUM: quic: timestamp shared in token was using internal time clock
2023-07-21	BUG/MEDIUM: quic: missing check of dcid for init pkt including a token
2023-07-21	BUG/MINOR: quic: retry token remove one useless intermediate expand
2023-07-21	BUG/MEDIUM: quic: token IV was not computed using a strong secret
2023-07-21	BUG/MINOR: config: Remove final '\n' in error messages
2023-07-21	BUG/MINOR: sink/log: properly deinit srv in sink_new_from_logsrv()
2023-07-21	BUG/MINOR: sink: fix errors handling in cfg_post_parse_ring()
2023-07-21	BUG/MINOR: sink: invalid sft free in sink_deinit()
2023-07-21	BUG/MINOR: log: free errmsg on error in cfg_parse_log_forward()
2023-07-21	BUG/MINOR: log: fix multiple error paths in cfg_parse_log_forward()
2023-07-21	BUG/MINOR: log: fix missing name error message in cfg_parse_log_forward()
2023-07-21	BUG/MEDIUM: log: improper use of logsrv->maxlen for buffer targets
2023-07-21	BUG/MINOR: log: LF upsets maxlen for UDP targets
2023-07-21	BUG/MINOR: ring: maxlen warning reported as alert
2023-07-21	BUG/MINOR: ring: size warning incorrectly reported as fatal error
2023-07-21	BUG/MINOR: sink: missing sft free in sink_deinit()
2023-07-21	BUG/MEDIUM: sink: invalid server list in sink_new_from_logsrv()
2023-07-21	BUG/MINOR: cache: A 'max-age=0' cache-control directive can be overriden by a s-maxage
2023-07-21	BUG/MINOR: tcp_sample: bc_{dst,src} return IP not INT
2023-07-21	BUG/MINOR: quic: Wrong endianess for version field in Retry token
2023-07-21	BUG/MINOR: quic: Wrong Retry paquet version field endianess
2023-07-21	BUG/MINOR: quic: Missing random bits in Retry packet header
2023-07-21	BUG/MINOR: config: fix stick table duplicate name check
2023-07-21	BUG/MEDIUM: quic: error checking buffer large enought to receive the retry tag
2023-07-21	BUG/MINOR: mux-h2: refresh the idle_timer when the mux is empty
2023-07-21	BUG/MEDIUM: mux-h2: make sure control frames do not refresh the idle timeout
2023-06-22	BUG/MINOR: mworker: leak of a socketpair during startup failure
2023-06-22	BUG/MINOR: quic: ticks comparison without ticks API use
2023-06-22	BUG/MEDIUM: mworker: increase maxsock with each new worker
2023-06-22	BUG/MINOR: quic: Missing initialization (packet number space probing)
2023-06-22	BUG/MINOR: namespace: missing free in netns_sig_stop()
2023-06-22	BUG/MINOR: server: inherit from netns in srv_settings_cpy()
2023-06-22	BUG/MINOR: quic: Wrong encryption level flags checking

Back to the list of branches and versions
Back to the HAProxy page