FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

varnish -- Information Disclosure Vulnerability

Affected packages
varnish6 < 6.3.1

Details

VuXML ID 2d4076eb-f679-11e9-a87f-a4badb2f4699
Discovery 2019-10-21
Entry 2019-10-24

Varnish Software reports:

A bug has been discovered in Varnish Cache where we fail to clear a pointer between the handling of one client requests and the next on the same connection. This can under specific circumstances lead to information being leaked from the connection workspace.

[source]

References

URL https://varnish-cache.org/security/VSV00004.html#vsv00004

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.