Oval Definition:oval:org.opensuse.security:def:20158852
Revision Date:2017-03-20Version:1
Title:CVE-2015-8852
Description:

Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated by a \r (carriage return) character in conjunction with multiple Content-Length headers in an HTTP request.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-8852
Platform(s):openSUSE 13.2
Product(s):
Definition Synopsis
  • openSUSE 13.2 is installed
  • AND Package Information
  • libvarnishapi1-3.0.7-2.3.1 is installed
  • OR varnish-3.0.7-2.3.1 is installed
  • OR varnish-devel-3.0.7-2.3.1 is installed
    • BACK