ELSA-2022-8649

ELSA-2022-8649 - varnish:6 security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2022-11-28

Description


varnish
[6.0.8-2.1]
- Resolves: #2142092 - CVE-2022-45060 varnish:6/varnish: Request Forgery
Vulnerability

[6.0.8-2]
- Resolves: #2047650 - CVE-2022-23959 varnish:6/varnish: Varnish HTTP/1 Request
Smuggling Vulnerability

varnish-modules
[0.15.0-6]
- Related: #1982862 - rebuild for new varnish version


Related CVEs


CVE-2022-45060

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.src.rpm9b470b45c3fc6e6f34e1ff686dd5f42d-
varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.src.rpme554a1bda49dda397bd514b743478392-
varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm8b28410388fac5cd22f4928057344b9a-
varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm81cc7188fa31cde9c0582e5b3755d454-
varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm7ced755248dda7bb50ae92a1fdd83cd4-
varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.aarch64.rpmbd3299a051131210f670ad1f18d1b4e8-
Oracle Linux 8 (x86_64) varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.src.rpm9b470b45c3fc6e6f34e1ff686dd5f42d-
varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.src.rpme554a1bda49dda397bd514b743478392-
varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpmce81dcde681701d5a4de222625708e51-
varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm5b2ef55c345136e5c045bbae0975a98b-
varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm42c836729cb223bbda0dfa8ec4baafca-
varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.x86_64.rpmcfba30ac57a0769ffbeca51b2a6a9954-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete