HAProxy known bugs for version v2.2.33 (maintenance branch 2.2) :  59 

This version (2.2.33) is a release belonging to maintenance branch 2.2 whose latest version is 2.2.34. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2025-04-232.2.34 ⇐ last
2024-04-052.2.33 ⇐ yours
2023-12-192.2.32 
2023-08-192.2.31 
2023-06-122.2.30 
2023-02-142.2.29 
2023-01-312.2.28 
2023-01-272.2.27 
2022-12-092.2.26 
2022-07-282.2.25 
2022-05-132.2.24 
2022-05-062.2.23 
2022-03-142.2.22 
2022-03-022.2.21 
2022-01-122.2.20 
2021-11-292.2.19 
2021-11-052.2.18 
2021-09-072.2.17 
2021-08-172.2.16 
2021-07-162.2.15 
2021-04-292.2.14 
2021-04-022.2.13 
2021-03-312.2.12 
2021-03-182.2.11 
2021-03-032.2.10 
2021-02-062.2.9 
2021-01-132.2.8 
2021-01-082.2.7 
2020-11-302.2.6 
2020-11-052.2.5 
2020-09-302.2.4 
2020-09-082.2.3 
2020-07-312.2.2 
2020-07-232.2.1 
2020-07-072.2.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.2 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
59 0 0 22 37

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2025-04-23BUG/MINOR: h2: always trim leading and trailing LWS in header values
2025-04-22BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refs
2025-04-22BUG/MEDIUM: peers: prevent learning expiration too far in futur from unsync node
2025-04-22BUG/MINOR: peers: fix expire learned from a peer not converted from ms to ticks
2025-04-22BUG/MEDIUM: hlua/cli: fix cli applet UAF in hlua_applet_wakeup()
2025-04-22BUG/MINOR: namespace: handle a possible strdup() failure
2025-04-22BUG/MINOR: cfgparse: fix NULL ptr dereference in cfg_parse_peers
2025-04-22BUG/MINOR: stats-json: Define JSON_INT_MAX as a signed integer
2025-04-22BUG/MINOR: cli: Fix a possible infinite loop in _getsocks()
2025-04-22BUG/MINOR: fcgi: Don't set the status to 302 if it is already set
2025-04-22BUG/MEDIUM: filters: Handle filters registered on data with no payload callback
2025-04-22BUG/MINOR: cli: Wait for the last ACK when FDs are xferred from the old worker
2025-04-22BUG/MEDIUM: htx: wrong count computation in htx_xfer_blks()
2025-04-22BUG/MINOR: spoe: Allow applet creation when closing the last one during stopping
2025-04-22BUG/MINOR: spoe: Check the shared waiting queue to shut applets during stopping
2025-04-22BUG/MEDIUM: ssl: chosing correct certificate using RSA-PSS with TLSv1.3
2025-04-22BUG/MINOR: ssl: put ssl_sock_load_ca under SSL_NO_GENERATE_CERTIFICATES
2025-04-22BUG/MINOR: stktable: fix big-endian compatiblity in smp_to_stkey()
2025-04-22BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2025-04-22BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2025-04-22BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2025-04-22BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2025-04-22BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2025-04-22BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2025-04-22BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2025-04-22BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2025-04-22BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2025-04-22BUG/MINOR: ssl: can't load a separated key file with openssl > 3.0
2025-04-22BUG/MINOR: mworker: fix mworker-max-reloads parser
2025-04-22BUG/MINOR: cfgparse-global: fix allowed args number for setenv
2024-09-17BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution
2024-09-17BUG/MINOR: polling: fix time reporting when using busy polling
2024-09-17BUG/MINOR: trace: automatically start in waiting mode with "start "
2024-09-17BUG/MINOR: fcgi-app: handle a possible strdup() failure
2024-09-17BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli
2024-09-17BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready
2024-09-17BUG/MINOR: cli: Atomically inc the global request counter between CLI commands
2024-09-17BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread
2024-07-03BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()
2024-07-03BUG/MINOR: cfgparse: remove the correct option on httpcheck send-state warning
2024-07-03BUG/MINOR: haproxy: only tid 0 must not sleep if got signal
2024-07-03BUG/MEDIUM: http_ana: ignore NTLM for reuse aggressive/always and no H1
2024-07-03BUG/MEDIUM: ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration
2024-07-03BUG/MINOR: tools: fix possible null-deref in env_expand() on out-of-memory
2024-07-03BUG/MINOR: tcpcheck: report correct error in tcp-check rule parser
2024-07-03BUG/MINOR: ssl/ocsp: init callback func ptr as NULL
2024-07-03BUG/MINOR: stats: Don't state the 303 redirect response is chunked
2024-07-03BUG/MINOR: htpp-ana/stats: Specify that HTX redirect messages have a C-L header
2024-07-03BUG/MEDIUM: fd: prevent memory waste in fdtab array
2024-07-03BUG/MEDIUM: htx: mark htx_sl as packed since it may be realigned
2024-07-03BUG/MINOR: h1: fix detection of upper bytes in the URI
2024-07-03BUG/MINOR: fd: my_closefrom() on Linux could skip contiguous series of sockets
2024-07-03BUG/MEDIUM: evports: do not clear returned events list on signal
2024-07-03BUG/MEDIUM: stconn: Don't forward channel data if input data must be filtered
2024-07-03BUG/MEDIUM: http-ana: Deliver 502 on keep-alive for fressh server connection
2024-07-03BUG/MINOR: log: invalid snprintf() usage in sess_build_logline()
2024-07-03BUG/MINOR: tools/log: invalid encode_{chunk,string} usage
2024-07-03BUG/MINOR: log: fix lf_text_len() truncate inconsistency
2024-04-08BUG/MEDIUM: connection: report connection errors even when no mux is installed

Back to the list of branches and versions
Back to the HAProxy page