Oracle Linux 8 ELSA-2022-8649 Important: Varnish Request Forgery Issue
oracle
November 29, 2022
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
Summary
varnish [6.0.8-2.1] - Resolves: #2142092 - CVE-2022-45060 varnish:6/varnish: Request Forgery Vulnerability [6.0.8-2] - Resolves: #2047650 - CVE-2022-23959 varnish:6/varnish: Varnish HTTP/1 Request Smuggling Vulnerability varnish-modules [0.15.0-6] - Related: #1982862 - rebuild for new varnish version
Topics Covered
SRPMs
https://oss.oracle.com:443/ol8/SRPMS-updates/varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates/varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.src.rpm
x86_64
varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.x86_64.rpm varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.x86_64.rpm
aarch64
varnish-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm varnish-devel-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm varnish-docs-6.0.8-2.module+el8.7.0+20885+cb213da4.1.aarch64.rpm varnish-modules-0.15.0-6.module+el8.5.0+20320+0b4af72d.aarch64.rpm
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2022-45060
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!