Release | Version |
---|---|
wheezy (security) | 3.0.2-2+deb7u2 |
jessie (security) | 4.0.2-1+deb8u1 |
stretch (security) | 5.0.0-7+deb9u2 |
sid | 5.2.1-1 |
Bug | wheezy | jessie | stretch | sid | Description |
---|---|---|---|---|---|
CVE-2009-4488 | vulnerable | vulnerable | vulnerable | vulnerable | ** DISPUTED ** Varnish 2.0.6 writes data to a log file without ... |
Bug | Description |
---|---|
CVE-2017-8807 | vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache ... |
CVE-2017-12425 | An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, ... |
CVE-2015-8852 | Varnish 3.x before 3.0.7, when used in certain stacked installations, ... |
CVE-2013-4484 | Varnish before 3.0.5 allows remote attackers to cause a denial of ... |
CVE-2013-0345 | varnish 3.0.3 uses world-readable permissions for the ... |
CVE-2009-2936 | ** DISPUTED ** The Command Line Interface (aka Server CLI or ... |
DSA / DLA | Description |
---|---|
DSA-4034-1 | varnish - security update |
DSA-3924-1 | varnish - security update |
DSA-3924-1 | varnish - security update |
DSA-3553-1 | varnish - security update |
DSA-2814-1 | varnish - denial of service |
DSA-2814-1 | varnish - denial of service |