{"id":"CVE-2019-14241","details":"HAProxy through 2.0.2 allows attackers to cause a denial of service (ha_panic) via vectors related to htx_manage_client_side_cookies in proto_htx.c.","modified":"2026-04-11T21:45:36.295673Z","published":"2019-07-23T13:15:13.240Z","related":["SUSE-SU-2019:3001-1","SUSE-SU-2019:3002-1","openSUSE-SU-2019:2555-1","openSUSE-SU-2019:2556-1","openSUSE-SU-2024:10839-1"],"references":[{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00060.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00062.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/109352"},{"type":"EVIDENCE","url":"https://github.com/haproxy/haproxy/issues/181"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/haproxy/haproxy","events":[{"introduced":"e18fdfdb8504e1d8e57f74cb3228b01a9fc5af4b"},{"last_affected":"0b936ad946719652affa17f9d79403cd2e0c3faf"},{"introduced":"ba23630ad009464dc8e4d01dac9ce779eb84cc2a"},{"last_affected":"6e893b9931c2b87d93a8e31e269a823b6bdafe1a"}],"database_specific":{"cpe":"cpe:2.3:a:haproxy:haproxy:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"1.4"},{"last_affected":"1.9.8"},{"introduced":"2.0.0"},{"last_affected":"2.0.2"}]}}],"versions":["v1.4.0","v1.4.1","v1.4.2","v1.4.3","v1.4.4","v1.4.5","v1.4.6","v1.5-dev10","v1.5-dev12","v1.5-dev13","v1.5-dev14","v1.5-dev15","v1.5-dev16","v1.5-dev17","v1.5-dev18","v1.5-dev19","v1.5-dev20","v1.5-dev21","v1.5-dev22","v1.5-dev23","v1.5-dev24","v1.5-dev25","v1.5-dev26","v1.5-dev8","v1.5-dev9","v1.5.0","v1.6-dev0","v1.6-dev1","v1.6-dev2","v1.6-dev3","v1.6-dev4","v1.6-dev5","v1.6-dev6","v1.6-dev7","v1.6.0","v1.7-dev0","v1.7-dev1","v1.7-dev2","v1.7-dev3","v1.7-dev4","v1.7-dev5","v1.7-dev6","v1.7.0","v1.8-dev0","v1.8-dev1","v1.8-dev2","v1.8-dev3","v1.8-rc1","v1.8-rc2","v1.8-rc3","v1.8-rc4","v1.8.0","v1.9-dev0","v1.9-dev1","v1.9-dev10","v1.9-dev11","v1.9-dev2","v1.9-dev3","v1.9-dev4","v1.9-dev5","v1.9-dev6","v1.9-dev7","v1.9-dev8","v1.9-dev9","v1.9.0","v2.0-dev0","v2.0-dev1","v2.0-dev2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-14241.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}