Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

Fedora 43 Varnish-Modules Urgent Security Patch CVE-2025-8671

fedora
Calendar Grey June 30, 2026
Dist Fedora Esm H88
Fedora 43 releases critical varnish-modules security advisory featuring CVE-2025-8671 patches. Upgrade now to ensure safety!
Update to latest 7.7.x release available, a security release

Summary

This is a collection of modules ("vmods") extending Varnish VCL used

for describing HTTP request/response policies with additional

capabilities. This collection contains the following vmods:

bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey

Update Information:

Update to latest 7.7.x release available, a security release. Includes fixes for VSV00017 aka CVE-2025-8671, aAdded patches for for VSV00018 aka CVE-2026-34475, added patches for for VSV00019.

Change Log

* Wed Jun 17 2026 Ingvar Hagelund - 0.26.0-4 - Rebuilt for varnish-7.7.3

References

Fedora Update Notification FEDORA-2026-7f36ec4c65 2026-07-01 01:21:48.846180+00:00 Name : varnish-modules Product : Fedora 43 Version : 0.26.0 Release : 4.fc43 URL : https://github.com/varnish/varnish-modules Summary : A collection of modules ("vmods") extending Varnish VCL Description : This is a collection of modules ("vmods") extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-7f36ec4c65' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: varnish-modules
Product: Fedora 43
Version: 0.26.0
Release: 4.fc43
Summary: A collection of modules ("vmods") extending Varnish VCL

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here