16 matches found
TencentOS Server 3: varnish:6 (TSSA-2022:0024)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0024 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Rocky Linux 8 : varnish:6 (RLSA-2020:4756)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4756 advisory. - An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to...
CentOS 8 : varnish:6 (CESA-2020:4756)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4756 advisory. - varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-15892 - varnish: not clearing pointer between two client requests leads ...
varnish:6 security, bug fix, and enhancement update
varnish 6.0.6-2 - new version 6.0.6 - Resolves: 1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS - Resolves: 1790907 - CVE-2019-20637 varnish: not clearing pointer between two client requests leads to information disclosure - Resolves: 1763958 - CVE-2019-15892 varnish:6/varnish: denial of...
Moderate: Red Hat Security Advisory: varnish:6 security, bug fix, and enhancement update
An update for the varnish:6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: varnish:6 security, bug fix, and enhancement update
Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. The following packages have been upgraded to a later upstream version: varnish 6.0.6. BZ1795673...
Fedora Update for varnish FEDORA-2019-59e3cb90a3
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 30 : varnish (2019-feec5e0afd)
New upstream release. A security release, patching VSV00003 DoS attack vector, aka CVE-2019-15892. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
Fedora 31 : varnish (2019-a0a0cdef92)
New upstream release. A security release, patching VSV00003 DoS attack vector, aka CVE-2019-15892. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
Fedora Update for varnish FEDORA-2019-feec5e0afd
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 29 : varnish (2019-8a85a90af6)
New upstream release. A security release, fixing VSV00003, CVE-2019-15892. For a list of other changes, please see the upstream changelog at https://github.com/varnishcache/varnish-cache/blob/6.0/doc/changes.rst Note that Tenable Network Security has extracted the preceding description block...
openSUSE: Security Advisory for varnish (openSUSE-SU-2019:2184-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : varnish (openSUSE-2019-2184)
This update for varnish fixes the following issues : Security issue fixed : - CVE-2019-15892: Fixed a potential denial of service by sending crafted HTTP/1 requests boo1149382. Non-security issues fixed : - Updated the package to release 6.2.1. - Added a thread pool watchdog which will restart th...
OPENSUSE-SU-2019:2184-1 Security update for varnish
This update for varnish fixes the following issues: Security issue fixed: - CVE-2019-15892: Fixed a potential denial of service by sending crafted HTTP/1 requests boo1149382. Non-security issues fixed: - Updated the package to release 6.2.1. - Added a thread pool watchdog which will restart the...
[SECURITY] [DSA 4514-1] varnish security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4514-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 04, 2019 https://www.debian.org/security/faq -...
CVE-2019-15892
CVE-2019-15892 affects Varnish Cache before 6.0.4 LTS and 6.1.x and before 6.2.1 in the 6.2.x line. An HTTP/1 parsing failure allows a remote attacker to trigger an assert, causing an automatic restart with a clean cache and resulting in a Denial of Service. The available fixes are to upgrade to ...