Search for packages
| purl | pkg:deb/debian/varnish@7.1.1-2%2Bdeb12u1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-b85u-4g42-nyaq | varnish: HTTP/2 Broken Window Attack may result in denial of service |
CVE-2024-30156
VSV00014 |
| VCID-c4d1-jsqh-hban | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2023-44487
GHSA-qppj-fm5r-hxr3 VSV00013 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T18:50:24.148974+00:00 | Debian Importer | Fixing | VCID-b85u-4g42-nyaq | https://security-tracker.debian.org/tracker/data/json | 37.0.0 |
| 2025-07-03T17:51:52.822732+00:00 | Debian Importer | Fixing | VCID-c4d1-jsqh-hban | https://security-tracker.debian.org/tracker/data/json | 37.0.0 |
| 2025-07-01T16:12:16.718500+00:00 | Debian Importer | Fixing | VCID-b85u-4g42-nyaq | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-07-01T16:00:41.828835+00:00 | Debian Importer | Fixing | VCID-c4d1-jsqh-hban | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |