ELSA-2022-8649

ELSA-2022-8649 - varnish:6 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2022-11-28

Description

varnish
[6.0.8-2.1]
- Resolves: #2142092 - CVE-2022-45060 varnish:6/varnish: Request Forgery
Vulnerability

[6.0.8-2]
- Resolves: #2047650 - CVE-2022-23959 varnish:6/varnish: Varnish HTTP/1 Request
Smuggling Vulnerability

varnish-modules
[0.15.0-6]
- Related: #1982862 - rebuild for new varnish version

Related CVEs

CVE-2022-45060

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 8 (aarch64)	varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.src.rpm	9b470b45c3fc6e6f34e1ff686dd5f42d	-
	varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.src.rpm	e554a1bda49dda397bd514b743478392	-
	varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm	8b28410388fac5cd22f4928057344b9a	-
	varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm	81cc7188fa31cde9c0582e5b3755d454	-
	varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm	7ced755248dda7bb50ae92a1fdd83cd4	-
	varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.aarch64.rpm	bd3299a051131210f670ad1f18d1b4e8	-
Oracle Linux 8 (x86_64)	varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.src.rpm	9b470b45c3fc6e6f34e1ff686dd5f42d	-
	varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.src.rpm	e554a1bda49dda397bd514b743478392	-
	varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm	ce81dcde681701d5a4de222625708e51	-
	varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm	5b2ef55c345136e5c045bbae0975a98b	-
	varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm	42c836729cb223bbda0dfa8ec4baafca	-
	varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.x86_64.rpm	cfba30ac57a0769ffbeca51b2a6a9954	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team