-
-
Notifications
You must be signed in to change notification settings - Fork 5.3k
Security: traefik/traefik
Security Navigation
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Security Vulnerability: Go 1.23.x < 1.23.8 - HTTP Request Smuggling Vulnerability - 1.23.8GHSA-5423-jcjm-2gpv published
Apr 18, 2025 by emilevaugeCritical -
Fix CVE-2025-22868GHSA-3wqc-mwfx-672p published
Apr 18, 2025 by emilevaugeHigh -
Path Matchers VulnerabilityGHSA-6p68-w45g-48j7 published
Apr 21, 2025 by emilevaugeHigh -
Fix CVE-2024-53259GHSA-hxr6-2p24-hf98 published
Dec 17, 2024 by nmenginModerate -
X-Forwarded-Prefix Header allows for Open RedirectGHSA-h924-8g65-j9wg published
Nov 29, 2024 by nmenginLow -
HTTP client can remove the X-Forwarded headersGHSA-62c8-mh53-4cqv published
Sep 19, 2024 by nmenginCritical -
Bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakesGHSA-gxrv-wf35-62w9 published
Jul 4, 2024 by nmenginHigh -
ACME DNS: Azure Identity Libraries Elevation of Privilege VulnerabilityGHSA-rvj4-q8q5-8grf published
Jun 20, 2024 by nmenginModerate -
Unexpected behavior with IPv4-mapped IPv6 addressesGHSA-7jmw-8259-q9jx published
Jun 11, 2024 by nmenginModerate -
Malformed DNS message can cause infinite loopGHSA-f7cq-5v43-8pwp published
May 23, 2024 by nmenginModerate