HAProxy known bugs for version v2.6.20 (maintenance branch 2.6) : 84

This version (2.6.20) is a release belonging to maintenance branch 2.6 whose latest version is 2.6.21. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

full changelog for 2.6 : here
browse history for 2.6 : here

Other versions in the same branch

This branch contains the following releases :

Date Version Comment

2025-01-29 2.6.21 ⇐ last

2024-11-08 2.6.20 ⇐ yours

2024-09-19 2.6.19

2024-06-18 2.6.18

2024-04-05 2.6.17

2023-12-13 2.6.16

2023-08-09 2.6.15

2023-06-09 2.6.14

2023-05-02 2.6.13

2023-03-28 2.6.12

2023-03-17 2.6.11

2023-03-10 2.6.10

2023-02-14 2.6.9

2023-01-24 2.6.8

2022-12-02 2.6.7

2022-09-22 2.6.6

2022-09-03 2.6.5

2022-08-22 2.6.4

2022-08-19 2.6.3

2022-07-22 2.6.2

2022-06-21 2.6.1

2022-05-31 2.6.0

Date	Version	Comment
2025-01-29	2.6.21	⇐ last
2024-11-08	2.6.20	⇐ yours
2024-09-19	2.6.19
2024-06-18	2.6.18
2024-04-05	2.6.17
2023-12-13	2.6.16
2023-08-09	2.6.15
2023-06-09	2.6.14
2023-05-02	2.6.13
2023-03-28	2.6.12
2023-03-17	2.6.11
2023-03-10	2.6.10
2023-02-14	2.6.9
2023-01-24	2.6.8
2022-12-02	2.6.7
2022-09-22	2.6.6
2022-09-03	2.6.5
2022-08-22	2.6.4
2022-08-19	2.6.3
2022-07-22	2.6.2
2022-06-21	2.6.1
2022-05-31	2.6.0

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.6 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in this version by category :

Total CRITICAL MAJOR MEDIUM MINOR

84 0 2 34 48

Total	CRITICAL	MAJOR	MEDIUM	MINOR
84	0	2	34	48

Click on the subjects below to get the full description of the bug :

Merge date	Subject - Severity (minor, medium, major, critical)
2025-04-17	BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers (2)
2025-04-17	BUG/MINOR: hlua: fix invalid errmsg use in hlua_init()
2025-04-17	BUG/MINOR: backend: do not use the source port when hashing clientip
2025-04-17	BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refs
2025-04-17	BUG/MEDIUM: backend: fix reuse with set-dst/set-dst-port
2025-04-17	BUG/MINOR: backend: do not overwrite srv dst address on reuse
2025-04-17	BUG/MINOR: log: fix gcc warn about truncating NUL terminator while init char arrays
2025-04-17	BUG/MEDIUM: peers: prevent learning expiration too far in futur from unsync node
2025-04-17	BUG/MINOR: peers: fix expire learned from a peer not converted from ms to ticks
2025-04-17	BUG/MEDIUM: hlua/cli: fix cli applet UAF in hlua_applet_wakeup()
2025-04-17	BUG/MINOR: namespace: handle a possible strdup() failure
2025-04-17	BUG/MINOR: server: dont return immediately from parse_server() when skipping checks
2025-04-17	BUG/MINOR: cfgparse/peers: properly handle ignored local peer case
2025-04-17	BUG/MINOR: cfgparse/peers: fix inconsistent check for missing peer server
2025-04-17	BUG/MEIDUM: startup: return to initial cwd only after check_config_validity()
2025-04-17	BUG/MINOR: server: check for either proxy-protocol v1 or v2 to send hedaer
2025-04-17	BUG/MINOR: h2: always trim leading and trailing LWS in header values
2025-04-17	BUG/MINOR: sink: add tempo between 2 connection attempts for sft servers
2025-04-17	BUG/MINOR: cfgparse: fix NULL ptr dereference in cfg_parse_peers
2025-04-17	BUG/MINOR: stats-json: Define JSON_INT_MAX as a signed integer
2025-04-17	BUG/MINOR: flt-trace: Support only one name option
2025-04-17	BUG/MINOR: auth: Fix a leak on error path when parsing user's groups
2025-04-17	BUG/MINOR: config/userlist: Support one 'users' option for 'group' directive
2025-04-17	BUG/MINOR: cli: Fix a possible infinite loop in _getsocks()
2025-04-17	BUG/MINOR: cli: Fix memory leak on error for _getsocks command
2025-04-17	BUG/MINOR: tcp-rules: Don't forward close during tcp-response content rules eval
2025-04-17	BUG/MINOR: quic: prevent crash on conn access after MUX init failure
2025-04-17	BUG/MINOR: fcgi: Don't set the status to 302 if it is already set
2025-04-17	BUG/MEDIUM: filters: Handle filters registered on data with no payload callback
2025-04-17	BUG/MINOR: cli: Wait for the last ACK when FDs are xferred from the old worker
2025-04-17	BUG/MINOR: quic: fix CRYPTO payload size calcul for encoding
2025-04-17	BUG/MINOR: quic: reserve length field for long header encoding
2025-04-17	BUG/MINOR: server: fix the "server-template" prefix memory leak
2025-04-16	BUG/MEDIUM: thread: use pthread_self() not ha_pthread[tid] in set_affinity
2025-04-16	BUG/MEDIUM: htx: wrong count computation in htx_xfer_blks()
2025-04-16	BUG/MEDIUM: fd: mark FD transferred to another process as FD_CLONED
2025-04-16	BUG/MEDIUM: clock: make sure now_ms cannot be TICK_ETERNITY
2025-02-19	BUG/MEDIUM: spoe: Don't wakeup idle applets in loop during stopping
2025-02-19	BUG/MINOR: spoe: Allow applet creation when closing the last one during stopping
2025-02-19	BUG/MINOR: spoe: Check the shared waiting queue to shut applets during stopping
2025-02-19	BUG/MINOR: http-ana: Disable fast-fwd for unfinished req waiting for upgrade
2025-02-19	BUG/MEDIUM: mux-h1/mux-h2: Reject upgrades with payload on H2 side only
2025-02-19	BUG/MINOR: h2: reject extended connect for h2c protocol
2025-02-19	BUG/MINOR: h1: do not forward h2c upgrade header token
2025-02-19	BUG/MINOR: ssl_sock: fix xprt_set_used() to properly clear the TASK_F_USR1 bit
2025-02-11	BUG/MEDIUM: ssl: chosing correct certificate using RSA-PSS with TLSv1.3
2025-01-28	BUG/MINOR: stream: Properly handle "on-marked-up shutdown-backup-sessions"
2025-01-28	BUG/MINOR: ssl: put ssl_sock_load_ca under SSL_NO_GENERATE_CERTIFICATES
2025-01-28	BUG/MINOR: quic: do not increase congestion window if app limited
2025-01-23	MINOR: quic: Add a BUG_ON() on quic_tx_packet refcount
2025-01-23	BUG/MINOR: quic: ensure a detached coalesced packet can't access its neighbours
2025-01-23	BUG/MAJOR: quic: reject too large CRYPTO frames
2025-01-23	BUG/MEDIUM: stktable: fix missing lock on some table converters
2025-01-23	BUG/MINOR: quic: reject NEW_TOKEN frames from clients
2025-01-23	BUG/MINOR: stktable: fix big-endian compatiblity in smp_to_stkey()
2025-01-09	BUG/MEDIUM: queue: Make process_srv_queue return the number of streams
2025-01-09	BUG/MEDIUM: queues: Do not use pendconn_grab_from_px().
2025-01-09	BUG/MEDIUM: queues: Make sure we call process_srv_queue() when leaving
2025-01-09	BUG/MEDIUM: stconn: Don't forward shut for SC in connecting state
2025-01-09	BUG/MINOR: stream: unblock stream on wait-for-handshake completion
2025-01-09	BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}
2025-01-09	BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections
2025-01-09	BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks
2025-01-09	BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2025-01-09	BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2025-01-09	BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2025-01-09	BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set
2025-01-09	BUG/MEDIUM: http-ana: Don't release too early the L7 buffer
2025-01-09	BUG/MAJOR: quic: fix wrong packet building due to already acked frames
2025-01-09	BUG/MEDIUM: h3: Increase max number of headers when sending headers
2025-01-09	BUG/MEDIUM: h3: Properly limit the number of headers received
2025-01-09	BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2025-01-09	BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2025-01-09	BUG/MINOR: http-ana: Adjust the server status before the L7 retries
2025-01-09	BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2025-01-09	BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2025-01-09	BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list
2025-01-09	BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI
2025-01-09	BUG/MEDIUM: queue: make sure never to queue when there's no more served conns
2025-01-09	BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server
2025-01-09	BUG/MEDIUM: stream: make stream_shutdown() async-safe
2024-11-08	BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown

Back to the list of branches and versions
Back to the HAProxy page