Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/varnish@4.0.2-1%2Bdeb8u1
purl pkg:deb/debian/varnish@4.0.2-1%2Bdeb8u1
Next non-vulnerable version 7.7.3-2
Latest non-vulnerable version 7.7.3-2
Risk 4.1
Vulnerabilities affecting this package (10)
Vulnerability Summary Fixed by
VCID-4fbk-5fwk-efbd
Aliases:
CVE-2017-8807
security update
5.0.0-7+deb9u2
Affected by 10 other vulnerabilities.
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
VCID-hery-ps62-9kf5
Aliases:
CVE-2019-15892
varnish: denial of service handling certain crafted HTTP/1 requests
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-hpb7-1n1t-n3em
Aliases:
CVE-2022-45060
VSV00011
varnish: Request Forgery Vulnerability
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-j1qj-kj7k-v7fx
Aliases:
CVE-2025-47905
VSV00016
varnish: request smuggling attacks
7.1.1-2+deb12u1
Affected by 3 other vulnerabilities.
VCID-mbcb-cn8g-zfgw
Aliases:
CVE-2022-23959
varnish: HTTP/1 request smuggling vulnerability
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-pww8-5fsd-1kcz
Aliases:
CVE-2025-30346
VSV00015
varnish: Client-Side Desynchronization in Varnish Cache
7.1.1-2+deb12u1
Affected by 3 other vulnerabilities.
VCID-r7t1-a958-d7dg
Aliases:
CVE-2021-36740
varnish: HTTP/2 request smuggling attack via a large Content-Length header for a POST request
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-rn5t-3pup-kbbv
Aliases:
CVE-2019-20637
varnish: not clearing pointer between two client requests leads to information disclosure
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-tnwn-h2wc-q7c4
Aliases:
CVE-2017-12425
security update
5.0.0-7+deb9u2
Affected by 10 other vulnerabilities.
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
VCID-wm39-aehq-cyfb
Aliases:
CVE-2020-11653
varnish: remote clients may cause Varnish to assert and restart which could result in DoS
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-tnwn-h2wc-q7c4 security update CVE-2017-12425

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:12:45.175939+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:33:46.983112+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:32:25.784467+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:26:41.675902+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:46:23.249944+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:40:13.818591+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:33:42.997744+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:16:28.838835+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:01:44.172003+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:25:26.627201+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:04:45.488993+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:51:47.097320+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:41:15.934170+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:11:59.827835+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T14:09:28.046061+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T13:52:10.855031+00:00 Debian Oval Importer Fixing VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-11T23:46:35.681404+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:08:50.825853+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:07:37.159177+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:03:50.778472+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:27:18.302451+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:21:19.046223+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:14:59.920742+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:59:55.008799+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:45:47.641443+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:12:40.715751+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:53:03.009777+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:40:01.671209+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:29:34.299717+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:00:32.163961+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:58:01.478885+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:40:51.798448+00:00 Debian Oval Importer Fixing VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-08T23:18:50.314788+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:42:32.417185+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:41:17.311665+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:40:49.415056+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:07:44.841039+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:02:02.071966+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:56:03.593271+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:44:26.450801+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:30:49.366996+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:05:04.957483+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T23:25:33.381768+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T23:13:03.300630+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T23:02:56.496808+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T22:35:01.617446+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:32:41.083431+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:16:27.171378+00:00 Debian Oval Importer Fixing VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0