10 matches found
TencentOS Server 3: varnish:6 (TSSA-2022:0024)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0024 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Rocky Linux 8 : varnish:6 (RLSA-2020:4756)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:4756 advisory. - An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to...
CentOS 8 : varnish:6 (CESA-2020:4756)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4756 advisory. - varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-15892 - varnish: not clearing pointer between two client requests leads ...
varnish:6 security, bug fix, and enhancement update
varnish 6.0.6-2 - new version 6.0.6 - Resolves: 1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS - Resolves: 1790907 - CVE-2019-20637 varnish: not clearing pointer between two client requests leads to information disclosure - Resolves: 1763958 - CVE-2019-15892 varnish:6/varnish: denial of...
Moderate: Red Hat Security Advisory: varnish:6 security, bug fix, and enhancement update
An update for the varnish:6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Moderate: varnish:6 security, bug fix, and enhancement update
Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. The following packages have been upgraded to a later upstream version: varnish 6.0.6. BZ1795673...
openSUSE Security Update : varnish (openSUSE-2020-808)
This update for varnish fixes the following issues : - CVE-2019-20637: Fixed an information leak when handling one client request and the next on the same connection boo1169040 - CVE-2020-11653: Fixed a performance loss due to an assertion failure and daemon restart when communicating with TLS...
openSUSE: Security Advisory for varnish (openSUSE-SU-2020:0808-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-20637
An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3.x before 6.3.1. It does not clear a pointer between the handling of one client request and the next request within the same connection. This sometimes causes information to be disclosed from the...
CVE-2019-20637
Varnish Cache (versions before 6.0.5 LTS, 6.1.x before 6.2.2, and 6.3.x before 6.3.1) is affected by CVE-2019-20637. The vulnerability arises because a pointer is not cleared between handling successive client requests on the same TCP connection, which can allow disclosure of data from the connec...