This update fixes a bug trigged by a bogus content-length header. Under special circumstances, it could crash a varnishd subthread.
New upstream release. A bugfix release.
Highlights from the changelog: 26 reported bugs fixed. Replaced objects are now expired immediately, instead of kept around until expiry. * Memory usage on chunked backend responses is lower
Fore a detailed list of changes, please see the project's announcement at https://www.varnish-cache.org/content/varnish-cache-403
sudo dnf upgrade --advisory=FEDORA-2015-4079
|submitted||4 years ago|
|in testing||4 years ago|
|in stable||4 years ago|
|0||0||#1200034 varnish: heap-based buffer overflow in backend server HTTP response parsing|
|0||0||#1200035 varnish: heap-based buffer overflow in backend server HTTP response parsing [fedora-all]|