Lucene search
+L

8 matches found

osv
osv
added 2022/08/23 7:0 p.m.8 views

USN-5474-2 varnish regression

USN-5474-1 fixed vulnerabilities in Varnish Cache. Unfortunately the fix for CVE-2020-11653 was incomplete. This update fixes the problem. Original advisory details: It was discovered that Varnish Cache could have an assertion failure when a TLS termination proxy uses PROXY version 2. A remote...

7.5CVSS7.2AI score0.02106EPSS
Exploits0References2
nessus
nessus
added 2021/02/01 12:0 a.m.43 views

CentOS 8 : varnish:6 (CESA-2020:4756)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4756 advisory. - varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-15892 - varnish: not clearing pointer between two client requests leads ...

7.8CVSS6.1AI score0.05789EPSS
Exploits0References4
redhat
redhat
added 2020/11/04 1:47 a.m.72 views

Moderate: Red Hat Security Advisory: varnish:6 security, bug fix, and enhancement update

An update for the varnish:6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS6.6AI score0.05789EPSS
Exploits0References5
almalinux
almalinux
added 2020/11/03 12:33 p.m.23 views

Moderate: varnish:6 security, bug fix, and enhancement update

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. The following packages have been upgraded to a later upstream version: varnish 6.0.6. BZ1795673...

7.8CVSS0.1AI score0.05789EPSS
Exploits0References3
nessus
nessus
added 2020/07/20 12:0 a.m.29 views

openSUSE Security Update : varnish (openSUSE-2020-808)

This update for varnish fixes the following issues : - CVE-2019-20637: Fixed an information leak when handling one client request and the next on the same connection boo1169040 - CVE-2020-11653: Fixed a performance loss due to an assertion failure and daemon restart when communicating with TLS...

7.5CVSS6AI score0.02106EPSS
Exploits0References4
openvas
openvas
added 2020/06/17 12:0 a.m.25 views

openSUSE: Security Advisory for varnish (openSUSE-SU-2020:0808-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.02106EPSS
Exploits0References2
cve
cve
added 2020/04/08 12:0 a.m.222 views

CVE-2020-11653

CVE-2020-11653 affects Varnish Cache prior to 6.0.6 LTS, 6.1.x prior to 6.2.3, and 6.3.x prior to 6.3.2. When a TLS termination proxy uses PROXY v2, an assertion failure can occur, causing the varnishd daemon to restart and leading to performance loss. Connected advisories (Debian/Ubuntu/Rocky) r...

7.5CVSS7.4AI score0.02106EPSS
Exploits0References4Affected Software2
debiancve
debiancve
added 2020/04/08 12:0 a.m.21 views

CVE-2020-11653

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss...

7.5CVSS7.4AI score0.02106EPSS
Exploits0
Rows per page
Query Builder