CVE-2022-38150

2022-08-1101:15:10

Debian Security Bug Tracker

security-tracker.debian.org

cve-2022-38150

varnish cache

http responses

backend server

security patch

unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

51.7%

JSON

In Varnish Cache 7.0.0, 7.0.1, 7.0.2, and 7.1.0, it is possible to cause the Varnish Server to assert and automatically restart through forged HTTP/1 backend responses. An attack uses a crafted reason phrase of the backend response status line. This is fixed in 7.0.3 and 7.1.1.

OSVersionArchitecturePackageVersionFilename
Debian12allvarnish< 7.1.1-1varnish_7.1.1-1_all.deb
Debian11allvarnish< 6.5.1-1+deb11u3varnish_6.5.1-1+deb11u3_all.deb
Debian999allvarnish< 7.1.1-1varnish_7.1.1-1_all.deb
Debian13allvarnish< 7.1.1-1varnish_7.1.1-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	varnish	< 7.1.1-1	varnish_7.1.1-1_all.deb
Debian	11	all	varnish	< 6.5.1-1+deb11u3	varnish_6.5.1-1+deb11u3_all.deb
Debian	999	all	varnish	< 7.1.1-1	varnish_7.1.1-1_all.deb
Debian	13	all	varnish	< 7.1.1-1	varnish_7.1.1-1_all.deb