Lucene search

K
redhatRedHatRHSA-2024:2938
HistoryMay 21, 2024 - 4:57 a.m.

(RHSA-2024:2938) Important: varnish:6 security update

2024-05-2104:57:23
access.redhat.com
2
varnish cache
http accelerator
security update
denial of service
cve-2024-30156
cvss score
references
broken window attack

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in
memory so web servers don’t have to create the same web page over and over
again, giving the website a significant speed up.

Security Fix(es):

  • varnish:6: HTTP/2 Broken Window Attack may result in denial of service
    (CVE-2024-30156)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.