| Revision Date: | 2019-09-30 | Version: | 1 |
| Title: | Security update for varnish (Moderate) |
| Description: |
This update for varnish fixes the following issues:
Security issue fixed:
- CVE-2019-15892: Fixed a potential denial of service by sending crafted HTTP/1 requests (boo#1149382).
Non-security issues fixed: - Updated the package to release 6.2.1. - Added a thread pool watchdog which will restart the worker process if scheduling tasks onto worker threads appears stuck. The new parameter 'thread_pool_watchdog' configures it. - Disabled error for clobbering, which caused bogus error in varnishtest.
This update was imported from the openSUSE:Leap:15.0:Update update project.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1149382
CVE-2019-15892
openSUSE-SU-2019:2221-1
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed AND Package Information
libvarnishapi2-6.2.1-bp151.4.3.1 is installed
OR varnish-6.2.1-bp151.4.3.1 is installed
OR varnish-devel-6.2.1-bp151.4.3.1 is installed
|