HAProxy known bugs for version v3.2.7 (maintenance branch 3.2) :  98 

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

• full changelog for 3.2 : here
• browse history for 3.2 : here

Other versions in the same branch

Date	Version	Comment
2026-02-12	3.2.12	⇐ last
2026-01-29	3.2.11
2025-12-18	3.2.10
2025-11-21	3.2.9
2025-11-07	3.2.8
2025-10-23	3.2.7	⇐ yours
2025-10-03	3.2.6
2025-09-23	3.2.5
2025-08-13	3.2.4
2025-07-09	3.2.3
2025-07-02	3.2.2
2025-06-11	3.2.1
2025-05-28	3.2.0

Known bugs affecting this version, and already fixed in the maintenance branch

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

• MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
• MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
• MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
• CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in this version by category :

Total	CRITICAL	MAJOR	MEDIUM	MINOR
98	0	3	46	49

Click on the subjects below to get the full description of the bug :

Merge date	Subject - Severity (minor, medium, major, critical)
2026-02-12	BUG/MAJOR: quic: fix parsing frame type
2026-02-12	BUG/MAJOR: quic: reject invalid token
2026-02-11	BUG/MINOR: startup: handle a possible strdup() failure
2026-02-11	BUG/MINOR: startup: fix allocation error message of progname string
2026-02-11	BUG/MINOR: config: Fix setting of alt_proto
2026-02-11	BUG/MEDIUM: lb-chash: always properly initialize lb_nodes with dynamic servers
2026-02-11	BUG/MINOR: cpu-topo: count cores not cpus to distinguish core types
2026-02-11	BUG/MEDIUM: threads: Atomically set TH_FL_SLEEPING and clr FL_NOTIFIED
2026-01-30	BUG/MEDIUM: applet: Fix test on shut flags for legacy applets
2026-01-30	BUG/MAJOR: applet: Don't call I/O handler if the applet was shut
2026-01-29	BUG/MEDIUM: debug: only dump Lua state when panicking
2026-01-29	BUG/MINOR: config: check capture pool creations for failures
2026-01-29	BUG/MEDIUM: mux-h2: synchronize all conditions to create a new backend stream
2026-01-28	BUG/MINOR: mworker/cli: fix show proc pagination using reload counter
2026-01-28	BUG/MINOR: mworker/cli: 'show proc' is limited by buffer size
2026-01-27	BUG/MINOR: ssl: fix error message of tune.ssl.certificate-compression
2026-01-23	BUG/MEDIUM: mux-h1: Skip UNUSED htx block when formating the start line
2026-01-23	BUG/MINOR: promex: Detach promex from the server on error dump its metrics dump
2026-01-23	BUG/MINOR: hlua: consume error object if ignored after a failing lua_pcall()
2026-01-23	BUG/MEDIUM: hlua: fix invalid lua_pcall() usage in hlua_traceback()
2026-01-23	BUG/MINOR: proxy: fix deinit crash on defaults with duplicate name
2026-01-23	BUG/MEDIUM: mux-quic: prevent BUG_ON() on aborted uni stream close
2026-01-23	BUG/MEDIUM: ssl: fix generate-certificates option when SNI greater than 64bytes
2026-01-23	BUG/MEDIUM: ssl: fix error path on generate-certificates
2026-01-23	BUG/MEDIUM: log: parsing log-forward options may result in segfault
2026-01-23	BUG/MEDIUM: promex: server iteration may rely on stale server
2026-01-23	BUG/MINOR: cfgparse: fix "default" prefix parsing
2026-01-23	BUG/MINOR: proxy: free persist_rules
2026-01-23	BUG/MINOR: http_act: fix deinit performed on uninitialized lf_expr in release_http_map()
2026-01-23	BUG/MEDIUM: quic: fix ACK ECN frame parsing
2026-01-23	BUG/MINOR: hlua_fcn: ensure Patref:add_bulk() is given a table object before using it
2026-01-23	BUG/MINOR: hlua_fcn: fix broken yield for Patref:add_bulk()
2026-01-09	BUG/MINOR: cli/stick-tables: argument to "show table" is optional
2026-01-09	BUG/MINOR: cfgparse: wrong section name upon error
2026-01-09	BUG/MEDIUM: mworker: can't use signals after a failed reload
2026-01-09	BUG/MINOR: backend: inspect request not response buffer to check for TFO
2026-01-09	BUG/MINOR: backend: fix the conn_retries check for TFO
2026-01-09	BUG/MEDIUM: ssl: Don't resume session for check connections
2026-01-09	BUG/MEDIUM: ssl: Don't reuse TLS session if the connection's SNI differs
2026-01-09	BUG/MINOR: sock-inet: ignore conntrack for transparent sockets on Linux
2026-01-07	BUG/MEDIUM: stconn: Don't report abort from SC if read0 was already received
2026-01-07	BUG/MEDIUM: http-ana: Properly detect client abort when forwarding response (v2)
2025-12-16	BUG/MEDIUM: quic: Don't try to use hystart if not implemented
2025-12-15	BUG/MEDIUM: quic: handle collision on CID generation
2025-12-15	BUG/MINOR: check: only try connection reuse for http-check rulesets
2025-12-15	BUG/MINOR: mux-h2: send the preface along with the first request if needed
2025-12-15	BUG/MINOR: cfgparse-listen: update err_code for fatal error on proxy directive
2025-12-15	BUG/MEDIUM: quic: support some ciphersuites and curves related options
2025-12-12	BUG/MEDIUM: http-ana: Don't close server connection on read0 in TUNNEL mode
2025-12-12	BUG/MINOR: ssl: Don't allow to set NULL sni
2025-12-12	BUG/MINOR: quic/ssl: crash in ClientHello callback ssl traces
2025-12-12	BUG/MEDIUM: connection: fix "bc_settings_streams_limit" typo
2025-12-12	BUG/MINOR: jwt: Missing "case" in switch statement
2025-12-12	BUG/MINOR: acme: fix ha_alert() call
2025-12-12	BUG/MINOR: acme: warning ‘ctx’ may be used uninitialized
2025-12-12	BUG/MINOR: acme: better challenge_ready processing
2025-12-12	BUG/MINOR: acme: prevent creating map entries with dns-01
2025-12-12	BUG/MINOR: acme: handle multiple auth with the same name
2025-12-12	BUG/MEDIUM: cli: State the cli have no more data to deliver if it yields
2025-12-12	BUG/MEDIUM: applet: Fix conditions to detect spinning loop with the new API
2025-12-12	BUG/MINOR: http-ana: Reset analyse_exp date after 'wait-for-body' action
2025-12-12	BUG/MEDIUM: h1-htx: Don't set HTX_FL_EOM flag on 1xx informational messages
2025-12-11	BUG/MEDIUM: mworker/listener: ambiguous use of RX_F_INHERITED with shards
2025-11-20	BUG/MEDIUM: proxy: do not align proxy_per_tgroup beyond allocator's capabilities
2025-11-20	BUG/MEDIUM: config: Use the mux protocol ALPN by default for listeners if forced
2025-11-20	BUG/MEDIUM: queues: Don't forget to unlock the queue before exiting
2025-11-20	BUG/MINOR: acme: alert when the map doesn't exist at startup
2025-11-20	BUG/MINOR: ssl: remove dead code in ssl_sock_from_buf()
2025-11-20	BUG/MINOR: mworker: wrong signals during startup
2025-11-20	BUG/MEDIUM: mworker: signals inconsistencies during startup and reload
2025-11-20	BUG/MINOR: quic-be: backend SSL session reuse fix (OpenSSL 3.5)
2025-11-20	BUG/MEDIUM: h1: prevent a crash on HTTP/2 upgrade
2025-11-20	BUG/MINOR: stick-tables: Fix return value for __stksess_kill()
2025-11-20	BUG/MEDIUM: stick-tables: Always return the good stksess from stktable_set_entry
2025-11-20	BUG/MINOR: check: fix reuse-pool if MUX inherited from server
2025-11-20	BUG/MINOR: acme: can't override the default resolver
2025-11-20	BUG/MEDIUM: acme: move from mt_list to a rwlock + ebmbtree
2025-11-20	BUG/MINOR: acme: more explicit error when BIO_new_file()
2025-11-20	BUG/MINOR: quic: close connection on CID alloc failure
2025-11-20	BUG/MEDIUM: stick-tables: Make sure updates are seen as local
2025-11-20	BUG/MINOR: config: Limit "tune.maxpollevents" parameter to 1000000
2025-11-20	BUG/MEDIUM: connection/ssl: also fix the ssl_sock_io_cb() regarding idle list
2025-11-20	BUG/MEDIUM: connection: do not reinsert a purgeable conn in idle list
2025-11-20	Revert "BUG/MEDIUM: connections: permit to permanently remove an idle conn"
2025-11-07	BUG/MINOR: acme: wrong dns-01 challenge in the log
2025-11-07	BUG/MEDIUM: server: close a race around ready_srv when deleting a server
2025-11-05	BUG/MEDIUM: connections: permit to permanently remove an idle conn
2025-11-05	BUG/MEDIUM: mux-h2: make sure not to move a dead connection to idle
2025-11-05	BUG/MEDIUM: mux-h1: fix 414 / 431 status code reporting
2025-11-05	BUG/MINOR: resolvers: ensure fair round robin iteration
2025-11-05	BUG/MINOR: ssl: returns when SSL_CTX_new failed during init
2025-11-05	BUG/MINOR: resolvers: Apply dns-accept-family setting on additional records
2025-11-05	BUG/MINOR: init: Do not close previously created fd in stdio_quiet
2025-11-05	BUG/MEDIUM: ssl: Crash because of dangling ckch_store reference in a ckch instance
2025-10-27	BUG/MEDIUM: cli: do not return ACKs one char at a time
2025-10-27	BUG/MEDIUM: mt_list: Use atomic operations to prevent compiler optims
2025-10-27	BUG/MINOR: stick-tables: properly index string-type keys
2025-10-27	BUG/MEDIUM: applet: Improve again spinning loops detection with the new API
2025-10-27	BUG/MEDIUM: mt_lists: Avoid el->prev = el->next = el

Back to the list of branches and versions
Back to the HAProxy page