QwikSec

Security Database

CVE

CWE

Training

CVE-2020-11653

Published: Apr 8, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://varnish-cache.org/security/VSV00005.html#vsv00005

openSUSE-SU-2020:0819

vendor-advisory

openSUSE-SU-2020:0808

vendor-advisory

[debian-lts-announce] 20221127 [SECURITY] [DLA 3208-1] varnish security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.