ELSA-2021-2988

ULN >
Oracle Linux Errata repository >
ELSA-2021-2988

ELSA-2021-2988 - varnish:6 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2021-08-03

Description

varnish
[6.0.6-2.1]
- Resolves: #1982861 - CVE-2021-36740 varnish:6/varnish: HTTP/2 request
smuggling attack via a large Content-Length header for a POST request

varnish-modules
[0.15.0-5]
- Related: #1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS

Related CVEs

CVE-2021-36740

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	varnish-6.0.6-2.module+el8.4.0+20258+f99218b2.1.src.rpm	27682ebbe401794a11ee4487e9f9b080de5ee764b82f5beef36da32254fba5e5	-	ol8_aarch64_appstream
	varnish-modules-0.15.0-5.module+el8.3.0+7653+45014445.src.rpm	7601c5202cde4e26796bb9a17b40786d0271ff525f529fb17eb77848c8f90260	-	ol8_aarch64_appstream
	varnish-6.0.6-2.module+el8.4.0+20258+f99218b2.1.aarch64.rpm	17361b6d6322c068942e5e6cfe524e56785c0b99952783687e1d4846e0f29499	-	ol8_aarch64_appstream
	varnish-devel-6.0.6-2.module+el8.4.0+20258+f99218b2.1.aarch64.rpm	3b7e8fe4813991375df6bcb9a2ae3a51d5f79c1c326f7f8650368e34b15943d5	-	ol8_aarch64_appstream
	varnish-docs-6.0.6-2.module+el8.4.0+20258+f99218b2.1.aarch64.rpm	f07ef306c575a1e02d30f61f02f4b7d3e813c2a76d44a371d638fae8dd31384f	-	ol8_aarch64_appstream
	varnish-modules-0.15.0-5.module+el8.3.0+7653+45014445.aarch64.rpm	57f19da8f85c7be94cabeb4cde8ee66596476602ac69168bcde469daee62223d	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	varnish-6.0.6-2.module+el8.4.0+20258+f99218b2.1.src.rpm	27682ebbe401794a11ee4487e9f9b080de5ee764b82f5beef36da32254fba5e5	-	ol8_x86_64_appstream
	varnish-modules-0.15.0-5.module+el8.3.0+7653+45014445.src.rpm	7601c5202cde4e26796bb9a17b40786d0271ff525f529fb17eb77848c8f90260	-	ol8_x86_64_appstream
	varnish-6.0.6-2.module+el8.4.0+20258+f99218b2.1.x86_64.rpm	539d95b5d2f9635bbdadf6eba17d9d46729b823748049a274a77274a1bc37559	-	ol8_x86_64_appstream
	varnish-devel-6.0.6-2.module+el8.4.0+20258+f99218b2.1.x86_64.rpm	1b6e0041ebcb80d13fdf3cc1b46eff03094289147f53a780f47448f14bbd85fd	-	ol8_x86_64_appstream
	varnish-docs-6.0.6-2.module+el8.4.0+20258+f99218b2.1.x86_64.rpm	0f323242303f9dac4c7c0488bca43a206bc44a912054fdae1fca66d9a0cd7a2f	-	ol8_x86_64_appstream
	varnish-modules-0.15.0-5.module+el8.3.0+7653+45014445.x86_64.rpm	2abd7f343f8bbe4c0363684b99c8bcdb0c65338a9bfca49c6becfac50bbd09be	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691