ALSA-2024:1690

[ALSA-2024:1690] Important: varnish security update

Type:

security

Severity:

important

Release date:

2024-04-10

Description:

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up.

Security Fix(es):

* varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	Packages/varnish-modules-0.15.0-6.module_el8.5.0+2620+03a0c2cc.aarch64.rpm	05cbad74192ade6ad5372b3c2a7fa6605599b836ebe6eb13155d5b6cf31661ef
aarch64	varnish-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.aarch64.rpm	883aea804a6df1213bb7a48f03aecdd6e6de359497010b04e81130c276f16a61
aarch64	varnish-devel-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.aarch64.rpm	be6421ad99f43bbb56848c8529af464d10ecb3934fb962910973605a4bf466c3
aarch64	varnish-docs-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.aarch64.rpm	e00343df35cf97486695b5ea2e91619010f043e6495e7169d07731452fdb62fb
ppc64le	varnish-docs-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.ppc64le.rpm	3b1a374563d9b0367f494346105fee4cc35e2c6de615a9caeaa5781489877f34
ppc64le	varnish-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.ppc64le.rpm	a7505d9877993dcf5268df1c5f80dbf0f10992c878e3b7c466968121061fe8f6
ppc64le	varnish-devel-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.ppc64le.rpm	ce0bd61771a07d5936b8463c102cbae869f45358f0bf20025c781043b8be2daa
ppc64le	Packages/varnish-modules-0.15.0-6.module_el8.5.0+76+a10ffa55.ppc64le.rpm	de1f5422f92056ada37c2bfa75ad55a3aa44fe2f7a44f79ab9c43a70ab16cd22
s390x	varnish-docs-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.s390x.rpm	5176a55b2bd8da780db1952d5ea793137895f16508960a9274d2a5109f17e329
s390x	varnish-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.s390x.rpm	76cb4421de4be9576410d9f451d4c6980a13e67880efb34734a87d80211dbf65
s390x	varnish-devel-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.s390x.rpm	7f371d7f6faa428f5509e4c202e4856ed73fd581eb44d928566049cc29259ba5
s390x	varnish-modules-0.15.0-6.module_el8.6.0+3089+dac88e97.s390x.rpm	f87b7bda5607c3d394f1298c744e857d5fa547aa968815ad8846b1da44910b24
x86_64	varnish-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.x86_64.rpm	1b99d5971e3f8d1c28b26aefd256bf214176b73e4150fa4edc082a82ef8371cc
x86_64	varnish-docs-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.x86_64.rpm	7cb69ea3ab0480772894b055b3047f047fdaea9350ea04a602503f6aa9410df2
x86_64	varnish-devel-6.0.13-1.module_el8.9.0+3786+e8a73bbf.alma.1.x86_64.rpm	8556f6d9ea4c2ac26050bc15a9aa68dc5d136080cc0a5edfb7283d15ddc2b4b8
x86_64	Packages/varnish-modules-0.15.0-6.module_el8.5.0+2620+03a0c2cc.x86_64.rpm	d14528a6c5a830869b9cbd412cf7f902c031ee49f71e422df6dc81124b0f3440

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.