Publishing details

• Published on 2017-12-09

Changelog

varnish (4.0.2-1+deb8u1) jessie-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Correctly handle bogusly large chunk sizes.
    This fixes a denial of service attack vector where bogusly large chunk
    sizes in requests could be used to force restarts of the Varnish server.

 -- Salvatore Bonaccorso <email address hidden>  Mon, 31 Jul 2017 20:30:41 +0200

Builds

Package files

• varnish_4.0.2-1+deb8u1.debian.tar.xz (22.4 KiB)
• varnish_4.0.2-1+deb8u1.dsc (2.6 KiB)
• varnish_4.0.2.orig.tar.gz (1.8 MiB)