Bug 1939669 (CVE-2021-28543)
| Summary: | CVE-2021-28543 varnish-modules: NULL pointer dereference in Varnish Cache via header.append() and header.copy() functions | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Guilherme de Almeida Suckevicz <gsuckevi> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | dridi.boukelmoune, hhorak, ingvar, jorton, luhliari |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | varnish-modules 0.18.0 | Doc Type: | If docs needed, set a value |
| Doc Text: |
A NULL pointer dereference issue was found in Varnish Cache through the 'header' module from the separate varnish-modules package. This flaw might allow for remote clients to cause Varnish to assert and restart, reducing overall availability and performance due to an increased number of cache misses, and may cause higher load on back-end servers. There is no potential for remote code execution or data leaks related to this vulnerability.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2021-03-31 11:35:11 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1939671, 1939672 | ||
| Bug Blocks: | 1939675 | ||
|
Description
Guilherme de Almeida Suckevicz
2021-03-16 19:25:43 UTC
Created varnish-modules tracking bugs for this issue: Affects: fedora-all [bug 1939671] Created varnish:6.0/varnish-modules tracking bugs for this issue: Affects: fedora-all [bug 1939672] rawhide/f35 has been updated with varnish-modules-0.17.1 which includes a fix for this problem. FEDORA-2021-2ad352ec70 security update for f34 has varnish-modules-0.17.1 which includes a fix for this problem. https://bodhi.fedoraproject.org/updates/FEDORA-2021-2ad352ec70 This is not a Fedora bug, please do not change its state. FEDORA-2021-2ad352ec70 has been pushed to the Fedora 34 stable repository. If problem still persists, please make note of it in this bug report. External References: https://varnish-cache.org/security/VSV00006.html Upstream fix: https://github.com/varnish/varnish-modules/commit/2c120e576ebb73bc247790184702ba58dc0afc39 Mitigation: Refer to https://varnish-cache.org/security/VSV00006.html#mitigation. Statement: The following products are not affected by this flaw, as they ship an older version of the `varnish-modules` package which did not include the vulnerable code in the `header` vmod: * Red Hat Enterprise Linux 8 * Red Hat Software Collections This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-28543 |