FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
c3610f39-18f1-11ed-9854-641c67a117d8	varnish -- Denial of Service Vulnerability Varnish Cache Project reports: A denial of service attack can be performed against Varnish Cache servers by specially formatting the reason phrase of the backend response status line. In order to execute an attack, the attacker would have to be able to influence the HTTP/1 responses that the Varnish Server receives from its configured backends. A successful attack would cause the Varnish Server to assert and automatically restart. Discovery 2022-08-09 Entry 2022-08-10 varnish7 < 7.1.1 https://varnish-cache.org/security/VSV00009.html

VuXML ID

Description

c3610f39-18f1-11ed-9854-641c67a117d8

varnish -- Denial of Service Vulnerability

Varnish Cache Project reports:

A denial of service attack can be performed against Varnish Cache servers by specially formatting the reason phrase of the backend response status line. In order to execute an attack, the attacker would have to be able to influence the HTTP/1 responses that the Varnish Server receives from its configured backends. A successful attack would cause the Varnish Server to assert and automatically restart.

Discovery 2022-08-09
Entry 2022-08-10
varnish7

< 7.1.1

https://varnish-cache.org/security/VSV00009.html