[El-errata] ELSA-2024-1690 Important: Oracle Linux 8 varnish security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Apr 10 09:32:43 UTC 2024
Oracle Linux Security Advisory ELSA-2024-1690
http://linux.oracle.com/errata/ELSA-2024-1690.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
varnish-6.0.13-1.module+el8.9.0+90264+d552af1c.x86_64.rpm
varnish-devel-6.0.13-1.module+el8.9.0+90264+d552af1c.x86_64.rpm
varnish-docs-6.0.13-1.module+el8.9.0+90264+d552af1c.x86_64.rpm
varnish-modules-0.15.0-6.module+el8.9.0+90264+d552af1c.x86_64.rpm
aarch64:
varnish-6.0.13-1.module+el8.9.0+90264+d552af1c.aarch64.rpm
varnish-devel-6.0.13-1.module+el8.9.0+90264+d552af1c.aarch64.rpm
varnish-docs-6.0.13-1.module+el8.9.0+90264+d552af1c.aarch64.rpm
varnish-modules-0.15.0-6.module+el8.9.0+90264+d552af1c.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//varnish-6.0.13-1.module+el8.9.0+90264+d552af1c.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//varnish-modules-0.15.0-6.module+el8.9.0+90264+d552af1c.src.rpm
Related CVEs:
CVE-2024-30156
Description of changes:
varnish
[6.0.13-1]
- new version 6.0.13
- Resolves: RHEL-30378 - varnish:6/varnish: HTTP/2 Broken Window Attack may
result in denial of service (CVE-2024-30156)
varnish-modules
More information about the El-errata
mailing list