Lucene search
RedHatRHSA-2024:4937HistoryJul 31, 2024 - 9:57 a.m.
(RHSA-2024:4937) Important: varnish:6 security update
2024-07-3109:57:20
access.redhat.com
4
varnish cache
http accelerator
denial of service
http/2
security update
AI Score
6.8
Confidence
Low
Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don’t have to create the same web page over and over again, giving the website a significant speed up.
Security Fix(es):
- varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | x86_64 | varnish-docs | < 6.0.6-1.module+el8.2.0+22154+6b906702 | varnish-docs-6.0.6-1.module+el8.2.0+22154+6b906702.x86_64.rpm |
| RedHat | any | x86_64 | varnish-modules | < 0.15.0-4.module+el8+2481+4078e9d2 | varnish-modules-0.15.0-4.module+el8+2481+4078e9d2.x86_64.rpm |
| RedHat | any | x86_64 | varnish | < 6.0.6-1.module+el8.2.0+22154+6b906702 | varnish-6.0.6-1.module+el8.2.0+22154+6b906702.x86_64.rpm |
| RedHat | any | x86_64 | varnish-modules-debugsource | < 0.15.0-4.module+el8+2481+4078e9d2 | varnish-modules-debugsource-0.15.0-4.module+el8+2481+4078e9d2.x86_64.rpm |
| RedHat | any | x86_64 | varnish-modules-debuginfo | < 0.15.0-4.module+el8+2481+4078e9d2 | varnish-modules-debuginfo-0.15.0-4.module+el8+2481+4078e9d2.x86_64.rpm |
| RedHat | any | x86_64 | varnish-devel | < 6.0.6-1.module+el8.2.0+22154+6b906702 | varnish-devel-6.0.6-1.module+el8.2.0+22154+6b906702.x86_64.rpm |
Related
ubuntucve
ubuntucve
CVE-2024-30156
2024-03-24 00:00:00
nessus
nessus
RHEL 9 : varnish (RHSA-2024:2820)
2024-05-13 00:00:00
RHEL 8 : varnish:6 (RHSA-2024:3426)
2024-05-28 00:00:00
RHEL 9 : varnish (RHSA-2024:2700)
2024-05-06 00:00:00
rocky
rocky
varnish security update
2024-05-06 13:04:21
varnish security update
2024-05-10 14:32:38
redhat
redhat
(RHSA-2024:2700) Important: varnish security update
2024-05-06 06:31:51
(RHSA-2024:2820) Important: varnish security update
2024-05-13 00:58:18
(RHSA-2024:1691) Important: varnish security update
2024-04-08 08:43:06
oraclelinux
oraclelinux
varnish security update
2024-04-09 00:00:00
varnish security update
2024-04-09 00:00:00
almalinux
almalinux
Important: varnish security update
2024-04-08 00:00:00
Important: varnish security update
2024-04-08 00:00:00
osv
osv
Important: varnish security update
2024-05-10 14:32:38
Important: varnish security update
2024-04-08 00:00:00
CVE-2024-30156
2024-03-24 01:15:45
debiancve
debiancve
CVE-2024-30156
2024-03-24 01:15:45
redhatcve
redhatcve
CVE-2024-30156
2024-03-25 18:23:44
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0124)
2024-04-15 00:00:00
vulnrichment
vulnrichment
CVE-2024-30156
2024-03-24 00:00:00
cvelist
cvelist
CVE-2024-30156
2024-03-24 00:00:00
nvd
nvd
CVE-2024-30156
2024-03-24 01:15:45
veracode
veracode
Broke Window Attack
2024-04-11 00:38:27
mageia
mageia
Updated varnish packages fix security vulnerability
2024-04-12 23:45:19
cve
cve
CVE-2024-30156
2024-03-24 01:15:45
redos
redos
ROS-20240423-01
2024-04-23 00:00:00