FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Varnish -- Denial of service vulnerability

Affected packages
4.0.1	<=	varnish4	<	4.0.5
4.1.0	<=	varnish4	<	4.1.8
		varnish5	<	5.0.1
5.1.0	<=	varnish5	<	5.1.3

Details

VuXML ID	88a77ad8-77b1-11e7-b5af-a4badb2f4699
Discovery	2017-08-02
Entry	2017-08-02

phk reports:

A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert.

[source]

References

URL	https://varnish-cache.org/security/VSV00001.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.