Fedora 21: varnish Security Update
Summary
This is Varnish Cache, a high-performance HTTP accelerator.
Documentation wiki and additional information about Varnish is
available on the following web site: http://varnish-cache.org/
Update Information:
This update fixes a bug trigged by a bogus content-length header. Under special circumstances, it could crash a varnishd subthread.
New upstream release. A bugfix release.
Highlights from the changelog:
* 26 reported bugs fixed.
* Replaced objects are now expired immediately, instead of kept around until expiry.
* Memory usage on chunked backend responses is lower
Change Log
* Fri Mar 13 2015 Ingvar Hagelund
References
[ 1 ] Bug #1200034 - varnish: heap-based buffer overflow in backend server HTTP response parsing https://bugzilla.redhat.com/show_bug.cgi?id=1200034
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update varnish' at the command line. For more information, refer to "Managing Software with yum", available at .