VulnerableCode Package Details - pkg:deb/debian/varnish@7.1.1-1.1%2Bdeb12u1

Search for packages

Vulnerability	Summary	Fixed by
VCID-b85u-4g42-nyaq Aliases: CVE-2024-30156 VSV00014	varnish: HTTP/2 Broken Window Attack may result in denial of service	7.1.1-2+deb12u1 Affected by 0 other vulnerabilities.
VCID-c4d1-jsqh-hban Aliases: CVE-2023-44487 GHSA-qppj-fm5r-hxr3 VSV00013	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	7.1.1-2+deb12u1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-b85u-4g42-nyaq
Aliases:
CVE-2024-30156
VSV00014

varnish: HTTP/2 Broken Window Attack may result in denial of service

7.1.1-2+deb12u1
Affected by 0 other vulnerabilities.

VCID-c4d1-jsqh-hban
Aliases:
CVE-2023-44487
GHSA-qppj-fm5r-hxr3
VSV00013

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.1.1-2+deb12u1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-c4pk-mc4n-wyh9	varnish: Client-Side Desynchronization in Varnish Cache	CVE-2025-30346 VSV00015
VCID-pb7u-beyt-fbet	content spoofing	CVE-2025-47905

Vulnerability

Summary

Aliases

VCID-c4pk-mc4n-wyh9

varnish: Client-Side Desynchronization in Varnish Cache

CVE-2025-30346
VSV00015

VCID-pb7u-beyt-fbet

content spoofing

CVE-2025-47905

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-05T15:08:20.351042+00:00	Debian Oval Importer	Fixing	VCID-pb7u-beyt-fbet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-07-05T06:45:34.781392+00:00	Debian Oval Importer	Fixing	VCID-c4pk-mc4n-wyh9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-07-03T18:50:24.147065+00:00	Debian Importer	Affected by	VCID-b85u-4g42-nyaq	https://security-tracker.debian.org/tracker/data/json	37.0.0
2025-07-03T17:51:52.820883+00:00	Debian Importer	Affected by	VCID-c4d1-jsqh-hban	https://security-tracker.debian.org/tracker/data/json	37.0.0
2025-07-02T03:58:58.453349+00:00	Debian Oval Importer	Fixing	VCID-pb7u-beyt-fbet	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-07-02T00:26:24.741906+00:00	Debian Oval Importer	Fixing	VCID-c4pk-mc4n-wyh9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-07-01T16:12:16.716047+00:00	Debian Importer	Affected by	VCID-b85u-4g42-nyaq	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-07-01T16:00:41.826079+00:00	Debian Importer	Affected by	VCID-c4d1-jsqh-hban	https://security-tracker.debian.org/tracker/data/json	36.1.3