12 matches found
Mageia: Security Advisory (MGASA-2014-0065)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201412-30
Gentoo Linux Local Security Checks GLSA 201412-30 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : varnish (openSUSE-SU-2013:1683-1)
This update fixes the following security issue with varnish : - bnc848451, CVE-2013-4484: fixed denial of service flaw in certain GET requests when using certain configurations in Varnish Cache handling - bnc839358: Deactivate libpcre JIT %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Fedora 20 : varnish-3.0.5-1.fc20 (2013-24018)
New upstream release 3.0.5. List of changes available at https://www.varnish-cache.org/releases/varnish-cache-3.0.5 - Changed default mask for varnish log dir to 700, closing 915413 - Added a patch for CVE-2013-4484 from upstream, closing 1025128 Note that Tenable Network Security has extracted t...
Fedora 19 : varnish-3.0.5-1.fc19 (2013-24023)
New upstream release 3.0.5. List of changes available at https://www.varnish-cache.org/releases/varnish-cache-3.0.5 - Changed default mask for varnish log dir to 700, closing 915413 - Added a patch for CVE-2013-4484 from upstream, closing 1025128 Note that Tenable Network Security has extracted t...
[SECURITY] [DSA 2814-1] varnish security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2814-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 09, 2013 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2814-1] varnish security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2814-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 09, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2814-1 (varnish - denial of service)
A denial of service vulnerability was reported in varnish, a state of the art, high-performance web accelerator. With some configurations of varnish a remote attacker could mount a denial of service child-process crash and temporary caching outage via a GET request with trailing whitespace...
[CVE-2013-4484] DoS vulnerability in Varnish HTTP cache
Summary ======= Varnish Cache with certain configurations is vulnerable to a denial of service attack. Three lines of VCL code solves the problem. This issue was discovered by Ilia Sharov, Yandex. This has been assigned CVE-2013-4484. Details ======= If Varnish receives a certain illegal request,...
DEBIAN-CVE-2013-4484
Varnish before 3.0.5 allows remote attackers to cause a denial of service child-process crash and temporary caching outage via a GET request with trailing whitespace characters and no URI...
CVE-2013-4484
Varnish Cache (varnish) is affected by CVE-2013-4484. The vulnerability lies in handling of certain GET requests with trailing whitespace and no URI, which can trigger a remote denial of service via a child-process crash and a temporary caching outage. Public reports in the connected documents in...
Varnish Cache server Denial Of Service
If Varnish receives a certain illegal request, and the subroutine 'vclerror' restarts the request, the varnishd worker process will crash with an assert. The varnishd management process will restart the worker process, but there will be a brief interruption of service and the cache will be emptie...