varnish:6 security, bug fix and enhancement update
エラータID: AXSA:2021-1416:01
リリース日:
2021/02/07 Sunday - 03:05
題名:
varnish:6 security, bug fix and enhancement update
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- Varnish には、リモートの攻撃者が巧妙に細工された HTTP/1 リクエストを
送信して解析を失敗させることによりアサートを起こすと、
アサートによりキャッシュをクリーンにするために自動的に再起動するため、
サービス拒否攻撃を受ける脆弱性があります。(CVE-2019-15892)
- Varnish には、同一接続内での1つのクライアントからのリクエストと
次のリクエストの間にポインタがクリアされないため、前のリクエストに関連した
データ構造や VCL に関連した一時ヘッダー等の情報が接続用のワークスペースから
開示されてしまう脆弱性があります。(CVE-2019-20637)
- Varnish には、TLS の終端プロキシとの通信に PROXY バージョン2を使用している場合に、
アサーションに失敗してデーモンが再起動し、パフォーマンス低下を招く脆弱性があります。
(CVE-2020-11653)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2019-15892
An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to trigger an assert by sending crafted HTTP/1 requests. The assert will cause an automatic restart with a clean cache, which makes it a Denial of Service attack.
An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An HTTP/1 parsing failure allows a remote attacker to trigger an assert by sending crafted HTTP/1 requests. The assert will cause an automatic restart with a clean cache, which makes it a Denial of Service attack.
CVE-2019-20637
An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3.x before 6.3.1. It does not clear a pointer between the handling of one client request and the next request within the same connection. This sometimes causes information to be disclosed from the connection workspace, such as data structures associated with previous requests within this connection or VCL-related temporary headers.
An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3.x before 6.3.1. It does not clear a pointer between the handling of one client request and the next request within the same connection. This sometimes causes information to be disclosed from the connection workspace, such as data structures associated with previous requests within this connection or VCL-related temporary headers.
CVE-2020-11653
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss.
An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss.
追加情報:
N/A
ダウンロード:
SRPMS
- varnish-modules-0.15.0-5.module+el8+1174+476f782a.src.rpm
MD5: c5cba34ba2e3894a90c9bc92d807f844
SHA-256: 20cd717c079982429cca3ef8ff45b22d132a8ef7a91cbd9a77bec0d7db359dcd
Size: 431.27 kB - varnish-6.0.6-2.module+el8+1174+476f782a.src.rpm
MD5: 8fea4246858672dae334fbc3da1bc8b3
SHA-256: c1f1007b33599784c491589e420f9f22775350e6ba60c95064613497082d0b8b
Size: 3.05 MB
Asianux Server 8 for x86_64
- varnish-modules-0.15.0-5.module+el8+1174+476f782a.x86_64.rpm
MD5: 7f245ca4059b0d8cae59a9e6bc91ff36
SHA-256: 10bd73ea9965096a6627514d50d90b9be79eaa5f49a35203c5ff241c5d7f5ecd
Size: 81.53 kB - varnish-modules-debugsource-0.15.0-5.module+el8+1174+476f782a.x86_64.rpm
MD5: a30e573407d39513a16614b2b74e23af
SHA-256: df4b8723e79be48fb235848efbe3a0a415d80f2403110ca1864c988cd7f547ed
Size: 31.55 kB - varnish-6.0.6-2.module+el8+1174+476f782a.x86_64.rpm
MD5: fa406edc3fe7a39fa6a17e1d8ac09914
SHA-256: 697be4f8e47db11d9e92607d6c06cc16be7d0b969cd72d2d38b87d9a9a65f75f
Size: 2.69 MB - varnish-devel-6.0.6-2.module+el8+1174+476f782a.x86_64.rpm
MD5: e691877baded9627e80ecc64177a3cf4
SHA-256: f42de6439c84a57429fb465415051a2dd22e85ae7d2e5836a3d0d2fed358e315
Size: 130.19 kB - varnish-docs-6.0.6-2.module+el8+1174+476f782a.x86_64.rpm
MD5: 8dff2c72433f2610304256e1e728c422
SHA-256: 78b13c04fd52c040af798f7c15b1f05f65738bea3e64620cb70bb0f4c22058e4
Size: 630.31 kB