Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/varnish@3.0.2-2%2Bdeb7u2
purl pkg:deb/debian/varnish@3.0.2-2%2Bdeb7u2
Next non-vulnerable version 7.7.3-2
Latest non-vulnerable version 7.7.3-2
Risk 4.1
Vulnerabilities affecting this package (13)
Vulnerability Summary Fixed by
VCID-4fbk-5fwk-efbd
Aliases:
CVE-2017-8807
security update
5.0.0-7+deb9u2
Affected by 10 other vulnerabilities.
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
VCID-fgjt-z1kd-nbct
Aliases:
CVE-2015-8852
Improper input validation in Varnish allows remote attackers to conduct HTTP smuggling attacks, and possibly trigger a buffer overflow.
4.0.2-1
Affected by 10 other vulnerabilities.
VCID-hery-ps62-9kf5
Aliases:
CVE-2019-15892
varnish: denial of service handling certain crafted HTTP/1 requests
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-hpb7-1n1t-n3em
Aliases:
CVE-2022-45060
VSV00011
varnish: Request Forgery Vulnerability
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-j1qj-kj7k-v7fx
Aliases:
CVE-2025-47905
VSV00016
varnish: request smuggling attacks
7.1.1-2+deb12u1
Affected by 3 other vulnerabilities.
VCID-mbcb-cn8g-zfgw
Aliases:
CVE-2022-23959
varnish: HTTP/1 request smuggling vulnerability
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-ntj2-zryg-tubp
Aliases:
CVE-2013-4090
Varnish HTTP cache before 3.0.4: ACL bug
4.0.2-1
Affected by 10 other vulnerabilities.
VCID-pww8-5fsd-1kcz
Aliases:
CVE-2025-30346
VSV00015
varnish: Client-Side Desynchronization in Varnish Cache
7.1.1-2+deb12u1
Affected by 3 other vulnerabilities.
VCID-r7t1-a958-d7dg
Aliases:
CVE-2021-36740
varnish: HTTP/2 request smuggling attack via a large Content-Length header for a POST request
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-rn5t-3pup-kbbv
Aliases:
CVE-2019-20637
varnish: not clearing pointer between two client requests leads to information disclosure
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-tnwn-h2wc-q7c4
Aliases:
CVE-2017-12425
security update
4.0.2-1+deb8u1
Affected by 10 other vulnerabilities.
5.0.0-7+deb9u2
Affected by 10 other vulnerabilities.
6.1.1-1+deb10u3
Affected by 8 other vulnerabilities.
VCID-wm39-aehq-cyfb
Aliases:
CVE-2020-11653
varnish: remote clients may cause Varnish to assert and restart which could result in DoS
6.5.1-1+deb11u3
Affected by 5 other vulnerabilities.
VCID-z4zn-dpfs-j7cq
Aliases:
CVE-2013-4484
Multiple vulnerabilities have been found in Varnish, the worst of which could allow a remote attacker to create a Denial of Service condition.
4.0.2-1
Affected by 10 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-fgjt-z1kd-nbct Improper input validation in Varnish allows remote attackers to conduct HTTP smuggling attacks, and possibly trigger a buffer overflow. CVE-2015-8852
VCID-z4zn-dpfs-j7cq Multiple vulnerabilities have been found in Varnish, the worst of which could allow a remote attacker to create a Denial of Service condition. CVE-2013-4484

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:12:45.168392+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:37:06.256308+00:00 Debian Oval Importer Affected by VCID-ntj2-zryg-tubp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:33:46.976128+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:32:25.777069+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:26:41.667954+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:46:23.242697+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:40:13.810839+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:33:42.990592+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:16:28.832266+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:01:44.165079+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:45:00.551239+00:00 Debian Oval Importer Affected by VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:25:26.620204+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:34:41.030751+00:00 Debian Oval Importer Affected by VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:04:45.481763+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:51:47.090990+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:41:15.927559+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:11:59.820341+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T14:09:28.039447+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T13:52:10.848385+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-15T13:04:54.801496+00:00 Debian Oval Importer Fixing VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T13:04:01.888653+00:00 Debian Oval Importer Fixing VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-11T23:46:35.673391+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:12:02.380949+00:00 Debian Oval Importer Affected by VCID-ntj2-zryg-tubp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:08:50.822098+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:07:37.155953+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:03:50.770794+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:27:18.294520+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:21:19.038405+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:14:59.911867+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:59:55.001178+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:45:47.633325+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:31:49.287328+00:00 Debian Oval Importer Affected by VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:12:40.708184+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:22:38.378546+00:00 Debian Oval Importer Affected by VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:53:03.001281+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:40:01.662659+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:29:34.291991+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:00:32.154863+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:58:01.471041+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:40:51.790618+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-11T12:53:56.474061+00:00 Debian Oval Importer Fixing VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:53:20.948605+00:00 Debian Oval Importer Fixing VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-08T23:18:50.307353+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:45:40.361936+00:00 Debian Oval Importer Affected by VCID-ntj2-zryg-tubp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:42:32.408673+00:00 Debian Oval Importer Affected by VCID-j1qj-kj7k-v7fx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:41:17.303772+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:40:49.406301+00:00 Debian Oval Importer Affected by VCID-rn5t-3pup-kbbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:07:44.833616+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:02:02.061446+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:56:03.583738+00:00 Debian Oval Importer Affected by VCID-hpb7-1n1t-n3em https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:44:26.442180+00:00 Debian Oval Importer Affected by VCID-pww8-5fsd-1kcz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:30:49.358514+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:22:56.753301+00:00 Debian Oval Importer Affected by VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:05:04.948781+00:00 Debian Oval Importer Affected by VCID-wm39-aehq-cyfb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:17:14.794747+00:00 Debian Oval Importer Affected by VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T23:25:33.377732+00:00 Debian Oval Importer Affected by VCID-mbcb-cn8g-zfgw https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T23:13:03.291702+00:00 Debian Oval Importer Affected by VCID-r7t1-a958-d7dg https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T23:02:56.487663+00:00 Debian Oval Importer Affected by VCID-hery-ps62-9kf5 https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T22:35:01.613499+00:00 Debian Oval Importer Affected by VCID-4fbk-5fwk-efbd https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:32:41.079351+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:16:27.161135+00:00 Debian Oval Importer Affected by VCID-tnwn-h2wc-q7c4 https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0
2026-04-07T21:28:39.593668+00:00 Debian Oval Importer Fixing VCID-fgjt-z1kd-nbct https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-07T21:28:03.339369+00:00 Debian Oval Importer Fixing VCID-z4zn-dpfs-j7cq https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0