Updated varnish packages fix security vulnerability
Publication date: 09 Aug 2017Modification date: 09 Aug 2017
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-12425
Description
A denial of service vulnerability was discovered in Varnish, a state of the art, high-performance web accelerator. Specially crafted HTTP requests can cause the Varnish daemon to assert and restart, clearing the cache in the process (CVE-2017-12425).
References
SRPMS
6/core
- varnish-5.0.0-3.1.mga6