Information on source package varnish

Available versions

Bug	buster	bullseye	bookworm	sid	Description
CVE-2022-45060	fixed	vulnerable	vulnerable	vulnerable	An HTTP Request Forgery issue was discovered in Varnish Cache 5.x and ...
CVE-2022-45059	fixed	fixed	vulnerable	vulnerable	An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x be ...
CVE-2019-20637	vulnerable (no DSA)	fixed	fixed	fixed	An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6 ...

Bug	buster	bullseye	bookworm	sid	Description
CVE-2009-4488	vulnerable	vulnerable	vulnerable	vulnerable	DISPUTED Varnish 2.0.6 writes data to a log file without sanitiz ...

Bug	Description
CVE-2022-38150	In Varnish Cache 7.0.0, 7.0.1, 7.0.2, and 7.1.0, it is possible to cau ...
CVE-2022-23959	In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish Cache 6.0 ...
CVE-2021-36740	Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL a ...
CVE-2020-11653	An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6 ...
CVE-2019-15892	An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x a ...
CVE-2017-12425	An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1 ...
CVE-2017-8807	vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cach ...
CVE-2015-8852	Varnish 3.x before 3.0.7, when used in certain stacked installations, ...
CVE-2013-4484	Varnish before 3.0.5 allows remote attackers to cause a denial of serv ...
CVE-2013-4090	Varnish HTTP cache before 3.0.4: ACL bug ...
CVE-2013-0345	varnish 3.0.3 uses world-readable permissions for the /var/log/varnish ...
CVE-2009-2936	DISPUTED The Command Line Interface (aka Server CLI or administr ...