RHSA-2020:4756MediumCVSS 7.5
Red Hat Security Advisory: varnish:6 security, bug fix, and enhancement update
🔗 CVE IDs covered (3)
📋 Description
CVE-2019-15892 — varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-20637 — varnish: not clearing pointer between two client requests leads to information disclosure CVE-2020-11653 — varnish: remote clients may cause Varnish to assert and restart which could result in DoS
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2020:4756
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1756079
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1772362
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1813867
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4756.json