HAProxy known bugs for version v2.5.8 (maintenance branch 2.5) :  197 

This version (2.5.8) is a release belonging to maintenance branch 2.5 whose latest version is 2.5.14. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2023-05-022.5.14 ⇐ last
2023-03-172.5.13 
2023-02-142.5.12 
2023-01-242.5.11 
2022-12-052.5.10 
2022-09-232.5.9 
2022-07-252.5.8 ⇐ yours
2022-05-132.5.7 
2022-04-262.5.6 
2022-03-142.5.5 
2022-02-252.5.4 
2022-02-182.5.3 
2022-02-162.5.2 
2022-01-112.5.1 
2021-11-232.5.0 

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.5 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
197 1 10 69 117

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2023-04-28BUG/MINOR: server: don't use date when restoring last_change from state file
2023-04-28BUG/MINOR: server: don't miss server stats update on server state transitions
2023-04-28BUG/MINOR: server: don't miss proxy stats update on server state transitions
2023-04-28BUG/MINOR: server: incorrect report for tracking servers leaving drain
2023-04-21BUG/MINOR: mux-h2: make sure to produce a log on invalid requests
2023-04-21BUG/MEDIUM: Update read expiration date on synchronous send
2023-04-21BUG/MEDIUM: proxy/sktable: prevent watchdog trigger on soft-stop
2023-04-21BUG/MEDIUM: hlua: prevent deadlocks with main lua lock
2023-04-21BUG/MINOR: hlua: prevent function and table reference leaks on errors
2023-04-21BUG/MINOR: hlua: fix reference leak in hlua_post_init_state()
2023-04-21BUG/MINOR: hlua: fix reference leak in core.register_task()
2023-04-21BUG/MEDIUM: listener/proxy: fix listeners notify for proxy resume
2023-04-21BUG/MEDIUM: resume from LI_ASSIGNED in default_resume_listener()
2023-04-21BUG/MINOR: listener: fix resume_listener() resume return value handling
2023-04-21BUG/MEDIUM: listener: fix pause_listener() suspend return value handling
2023-04-21BUG/MINOR: listener: null pointer dereference suspected by coverity
2023-04-21BUG/MINOR: cfgparse: make sure to include openssl-compat
2023-04-21BUG/MEDIUM: log: Properly handle client aborts in syslog applet
2023-04-21BUG/MEDIUM: fd: don't wait for tmask to stabilize if we're not in it.
2023-04-21BUG/MINOR: stick_table: alert when type len has incorrect characters
2023-04-21BUG/MEDIUM: resolvers: Force the connect timeout for DNS resolutions
2023-04-21BUG/MINOR: http-ana: Don't switch message to DATA when waiting for payload
2023-04-21BUG/MINOR: hlua: enforce proper running context for register_x functions
2023-04-21BUG/MINOR: log: free log forward proxies on deinit()
2023-04-21BUG/MINOR: sink: free forward_px on deinit()
2023-04-21BUG/MEDIUM: dns: Properly handle error when a response consumed
2023-04-21BUG/MEDIUM: channel: Improve reports for shut in co_getblk()
2023-04-21BUG/MEDIUM: mux-h1: Wakeup H1C on shutw if there is no I/O subscription
2023-04-21BUG/MEDIUM: mux-h2: erase h2c->wait_event.tasklet on error path
2023-04-14Revert "BUG/MEDIUM: stconn: Don't rearm the read expiration date if EOI was reached"
2023-04-14BUG/MINOR: ssl: ssl-(min|max)-ver parameter not duplicated for bundles in crt-list
2023-03-17BUG/MAJOR: qpack: fix possible read out of bounds in static table
2023-03-17DEBUG: ssl-sock/show_fd: Display SSL error code
2023-03-17DEBUG: cli/show_fd: Display connection error code
2023-03-17BUG/MAJOR: fd/threads: close a race on closing connections after takeover
2023-03-17BUG/MAJOR: fd/thread: fix race between updates and closing FD
2023-03-17BUG/MINOR: fd: Properly init the fd state in fd_insert()
2023-03-17BUG/MEDIUM: connection: Preserve flags when a conn is removed from an idle list
2023-03-17BUG/MEDIUM: connection: Clear flags when a conn is removed from an idle list
2023-03-17BUG/MINOR: sock_unix: match finalname with tempname in sock_unix_addrcmp()
2023-03-17BUG/MINOR: protocol: fix minor memory leak in protocol_bind_all()
2023-03-17BUG/MINOR: proto_ux: report correct error when bind_listener fails
2023-03-17BUG/MEDIUM: spoe: Don't set the default traget for the SPOE agent frontend
2023-03-17BUG/MEDIUM: listener: duplicate inherited FDs if needed
2023-03-17BUG/MINOR: mux-h2: make sure the h2c task exists before refreshing it
2023-03-17BUG/MINOR: tcp_sample: fix a bug in fc_dst_port and fc_dst_is_local sample fetches
2023-03-17BUG/MEDIUM: proxy: properly stop backends on soft-stop
2023-03-17BUG/MINOR: mworker: use MASTER_MAXCONN as default maxconn value
2023-03-17BUG/MINOR: init: make sure to always limit the total number of threads
2023-03-17BUG/MEDIUM: master: force the thread count earlier
2023-03-17BUG/MINOR: init: properly detect NUMA bindings on large systems
2023-03-17BUG/MINOR: ssl: Use 'date' instead of 'now' in ocsp stapling callback
2023-03-17BUG/MINOR: http-ana: Do a L7 retry on read error if there is no response
2023-03-17BUG/MINOR: http-check: Skip C-L header for empty body when it's not mandatory
2023-03-17BUG/MINOR: http-check: Don't set HTX_SL_F_BODYLESS flag with a log-format body
2023-03-17BUG/MEDIUM: h1-htx: Never copy more than the max data allowed during parsing
2023-03-17BUG/MINOR: ring: do not realign ring contents on resize
2023-03-17BUG/MINOR: cache: Check cache entry is complete in case of Vary
2023-03-17BUG/MINOR: cache: Cache response even if request has "no-cache" directive
2023-03-17BUG/MINOR: mworker: prevent incorrect values in uptime
2023-03-17BUG/MEDIUM: sched: allow a bit more TASK_HEAVY to be processed when needed
2023-03-17BUG/MINOR: sched: properly report long_rq when tasks remain in the queue
2023-03-17BUG/MEDIUM: stconn: Don't rearm the read expiration date if EOI was reached
2023-02-22BUG/MEDIUM: httpclient/lua: fix a race between lua GC and hlua_ctx_destroy
2023-02-22BUG/MINOR: lua/httpclient: missing free in hlua_httpclient_send()
2023-02-21BUG/MEDIUM: mworker: don't register mworker_accept_wrapper() when master FD is wrong
2023-02-21BUG/MEDIUM: mworker: prevent inconsistent reload when upgrading from old versions
2023-02-21BUG/MINOR: mworker: stop doing strtok directly from the env
2023-02-14BUG/CRITICAL: http: properly reject empty http header field names
2023-02-13BUG/MEDIUM: stconn: Schedule a shutw on shutr if data must be sent first
2023-02-13BUG/MEDIUM: cache: use the correct time reference when comparing dates
2023-02-13BUG/MEDIUM: stick-table: do not leave entries in end of window during purge
2023-02-13BUG/MINOR: ssl/crt-list: warn when a line is malformated
2023-02-13BUG/MEDIUM: ssl: wrong eviction from the session cache tree
2023-02-13BUG/MINOR: fcgi-app: prevent 'use-fcgi-app' in default section
2023-01-27BUG/MINOR: sink: free the forwarding task on exit
2023-01-24BUG/MINOR: http-htx: Normalized absolute URIs with an empty port
2023-01-24BUG/MINOR: h1: Replace authority validation to conform RFC3986
2023-01-20BUG/MINOR: jwt: Wrong return value checked
2023-01-20BUG/MINOR: mux-h2: add missing traces on failed headers decoding
2023-01-20BUG/MINOR: listener: close tiny race between resume_listener() and stopping
2023-01-20BUG/MINOR: ssl: Fix compilation with OpenSSL 1.0.2 (missing ECDSA_SIG_set0)
2023-01-20BUG/MEDIUM: jwt: Properly process ecdsa signatures (concatenated R and S params)
2023-01-20BUG/MINOR: mux-fcgi: Correctly set pathinfo
2023-01-20BUG/MINOR: listeners: fix suspend/resume of inherited FDs
2023-01-20BUG/MINOR: http-ana: make set-status also update txn->status
2023-01-20BUG/MINOR: http-fetch: Don't block HTTP sample fetch eval in HTTP_MSG_ERROR state
2023-01-20BUG/MINOR: http-ana: Report SF_FINST_R flag on error waiting the request body
2023-01-20BUG/MINOR: promex: Don't forget to consume the request on error
2023-01-20BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action
2023-01-20BUG/MINOR: hlua: Fix Channel.line and Channel.data behavior regarding the doc
2023-01-20BUG/MINOR: h1-htx: Remove flags about protocol upgrade on non-101 responses
2023-01-20BUG/MINOR: http: Memory leak of http redirect rules' format string
2023-01-20BUG/MAJOR: buf: Fix copy of wrapping output data when a buffer is realigned
2023-01-20BUG/MINOR: http-fetch: Only fill txn status during prefetch if not already set
2023-01-20BUG/MINOR: stick-table: report the correct action name in error message
2023-01-20BUG/MINOR: pool/stats: Use ullong to report total pool usage in bytes in stats
2023-01-20BUG/MEDIUM: mux-h2: Refuse interim responses with end-stream flag set
2023-01-20BUG/MINOR: ssl: Fix memory leak of find_chain in ssl_sock_load_cert_chain
2023-01-20BUG/MEDIUM: resolvers: Use tick_first() to update the resolvers task timeout
2023-01-20BUG/MINOR: startup: don't use internal proxies to compute the maxconn
2023-01-20BUG/MAJOR: fcgi: Fix uninitialized reserved bytes
2023-01-20BUG/MINOR: promex: create haproxy_backend_agg_server_status
2023-01-20BUG/MEDIUM: httpclient/lua: double LIST_DELETE on end of lua task
2023-01-20BUG/MEDIUM: mworker: fix segv in early failure of mworker mode with peers
2023-01-20BUG/MINOR: ssl: Fix potential overflow
2023-01-20BUG/MEDIUM: ssl: Verify error codes can exceed 63
2022-12-06BUG/MEDIIM: stconn: Flush output data before forwarding close to write side
2022-12-05BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action
2022-12-05Revert "BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action"
2022-11-25BUG/MINOR: mux-h1: Fix handling of 408-Request-Time-Out
2022-11-25BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action
2022-11-25BUG/MINOR: log: fix parse_log_message rfc5424 size check
2022-11-25BUG/MINOR: cfgparse-listen: fix ebpt_next_dup pointer dereference on proxy "from" inheritance
2022-11-25BUG/MINOR: server/idle: at least use atomic stores when updating max_used_conns
2022-11-25BUG/MEDIUM: peers: messages about unkown tables not correctly ignored
2022-11-25BUG/MINOR: ssl: don't initialize the keylog callback when not required
2022-11-25BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists
2022-11-25BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task
2022-11-25BUG/MINOR: pool/cli: use ullong to report total pool usage in bytes
2022-11-25BUG/MEDIUM: ring: fix creation of server in uninitialized ring
2022-11-25BUG/MINOR: mux-h1: Do not send a last null chunk on body-less answers
2022-11-25BUG/MEDIUM: mux-fcgi: Avoid value length overflow when it doesn't fit at once
2022-11-25BUG/MINOR: mux-fcgi: Be sure to send empty STDING record in case of zero-copy
2022-11-25BUG/MINOR: resolvers: Set port before IP address when processing SRV records
2022-11-25BUG/MINOR: resolvers: Don't wait periodic resolution on healthcheck failure
2022-11-25BUG/MINOR: http-htx: Fix error handling during parsing http replies
2022-11-25BUG/MEDIUM: wdt/clock: properly handle early task hangs
2022-11-25BUG/MINOR: ssl: ocsp structure not freed properly in case of error
2022-11-25BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer
2022-11-25BUG/MINOR: log: fixing bug in tcp syslog_io_handler Octet-Counting
2022-11-25BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task
2022-10-25BUG/MAJOR: stick-table: don't process store-response rules for applets
2022-10-25BUG/MINOR: sink: Set default connect/server timeout for implicit ring buffers
2022-10-25BUG/MINOR: sink: Only use backend capability for the sink proxies
2022-10-25BUG/MEDIUM: compression: handle rewrite errors when updating response headers
2022-10-25BUG/MEDIUM: httpclient: check if the httpclient was released in the IO handler
2022-10-25BUG/MEDIUM: httpclient/lua: crash when the lua task timeout before the httpclient
2022-10-25BUG/MINOR: ring: Properly parse connect timeout
2022-10-25BUG/MINOR: log: Preserve message facility when the log target is a ring buffer
2022-10-25BUG/MINOR: server: make sure "show servers state" hides private bits
2022-10-25BUG/MAJOR: stick-tables: do not try to index a server name for applets
2022-10-25BUG/MEDIUM: config: count line arguments without dereferencing the output
2022-10-25BUG/MINOR: config: don't count trailing spaces as empty arg (v2)
2022-10-10BUG/MINOR: backend: only enforce turn-around state when not redispatching
2022-10-10BUG/MINOR: smtpchk: SMTP Service check should gracefully close SMTP transaction
2022-10-10BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error
2022-10-10BUG/MINOR: hlua: hlua_channel_insert_data() behavior conflicts with documentation
2022-10-10BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()
2022-10-10BUG/MEDIUM: lua: handle stick table implicit arguments right.
2022-10-10BUG/MEDIUM: lua: Don't crash in hlua_lua2arg_check on failure
2022-10-10BUG/MINOR: checks: update pgsql regex on auth packet
2022-10-10BUG/MAJOR: conn-idle: fix hash indexing issues on idle conns
2022-10-10BUG/MINOR: hlua: _hlua_http_msg_delete incorrect behavior when offset is used
2022-10-10BUG/MINOR: hlua: fixing hlua_http_msg_insert_data behavior
2022-10-10BUG/MINOR: hlua: fixing hlua_http_msg_del_data behavior
2022-09-28BUG/MEDIUM: resolvers: Remove aborted resolutions from query_ids tree
2022-09-20BUG/MINOR: log: improper behavior when escaping log data
2022-09-20BUG/MEDIUM: captures: free() an error capture out of the proxy lock
2022-09-20BUG/MEDIUM: server: segv when adding server with hostname from CLI
2022-09-20BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.
2022-09-20BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'
2022-09-20BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK
2022-09-20BUG/MINOR: signals/poller: ensure wakeup from signals
2022-09-20BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals
2022-09-20BUG/MINOR: task: always reset a new tasklet's call date
2022-09-20BUG/MINOR: h1: Support headers case adjustment for TCP proxies
2022-09-15BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support
2022-09-15BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber
2022-09-15BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools
2022-09-15BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free() v2
2022-09-15BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input
2022-08-31BUG/MINOR: ssl: revert two wrong fixes with ckhi_link
2022-08-30BUG/MEDIUM: ssl: Fix a UAF when old ckch instances are released
2022-08-30BUG/MINOR: ssl: leak of ckch_inst_link in ckch_inst_free()
2022-08-30BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)
2022-08-29BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets
2022-08-29BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date
2022-08-29BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress
2022-08-29BUG/MEDIUM: peers: Add connect and server timeut to peers proxy
2022-08-29BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode
2022-08-29BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect
2022-08-29BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()
2022-08-29BUG/MAJOR: mworker: fix infinite loop on master with no proxies.
2022-08-29BUG/MINOR: ssl/cli: error when the ca-file is empty
2022-08-29BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized
2022-08-29BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle
2022-08-29BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names
2022-08-12BUG/MEDIUM: ring: fix too lax 'size' parser
2022-08-12BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()
2022-08-12BUG/MEDIUM: poller: use fd_delete() to release the poller pipes
2022-08-12BUG/MINOR: sink: fix a race condition between the writer and the reader
2022-08-12BUG/MINOR: ring/cli: fix a race condition between the writer and the reader
2022-08-12BUG/MEDIUM: proxy: Perform a custom copy for default server settings
2022-08-12BUG/MEDIUM: dns: Properly initialize new DNS session
2022-08-12BUG/MINOR: peers: Use right channel flag to consider the peer as connected
2022-08-12BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload
2022-08-12BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions
2022-08-12BUG/MEDIUM: queue/threads: limit the number of entries dequeued at once
2022-08-12DEBUG: fd: split the fd check

Back to the list of branches and versions
Back to the HAProxy page