stable

varnish-5.0.0-5.fc25

FEDORA-2017-8575fbfe90 created by ingvar 5 years ago for Fedora 25

Security fix for CVE-2017-8807: This fixes a possible data leak in stevedore transient objects in varnishd.

Upstream reports: "It is not inconceiveable that an attack can provoke this situation on vulnerable varnishd instances, where the leaked memory contains confidential data and therefore we have classified this as a security vulnerability."

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2017-8575fbfe90

This update has been submitted for testing by ingvar.

5 years ago

This update has been pushed to testing.

5 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

5 years ago

This update has been submitted for batched by ingvar.

5 years ago

This update has been submitted for stable by ingvar.

5 years ago

This update has been pushed to stable.

5 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Builds
1
varnish-5.0.0-5.fc25
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
BZ#1512798 Invalid bug number
0
0
BZ#1513523 CVE-2017-8807 varnish: Data leak - ‘-sfile’ Stevedore transient objects
0
0
BZ#1513524 CVE-2017-8807 varnish: Data leak - ‘-sfile’ Stevedore transient objects [fedora-all]
0
0
varnish-5.0.0-5.fc25

Automated Test Results

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.1.1 on bodhi-web-69-j2srl.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy