{"id":"AZL-59712","summary":"CVE-2025-32464 affecting package haproxy for versions less than 2.9.11-3","details":"HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one.","modified":"2026-04-01T05:19:32.659519Z","published":"2025-04-09T03:15:16Z","upstream":["CVE-2025-32464"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-32464"}],"affected":[{"package":{"name":"haproxy","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/haproxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.11-3"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-59712.json"}}],"schema_version":"1.7.5"}