-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 13 Feb 2022 15:48:11 +0100 Source: varnish Architecture: source Version: 6.1.1-1+deb10u3 Distribution: buster-security Urgency: medium Maintainer: Varnish Package Maintainers <team+varnish-team@tracker.debian.org> Changed-By: Florian Weimer <fw@deneb.enyo.de> Closes: 1004433 Changes: varnish (6.1.1-1+deb10u3) buster-security; urgency=medium . * Apply upstream patch to fix: VSV00008 Varnish HTTP/1 Request Smuggling Vulnerability (CVE-2022-23959). (Closes: #1004433) Checksums-Sha1: 7d00ea17d41a6892141aec740476ec5af9403085 2092 varnish_6.1.1-1+deb10u3.dsc 09f542cb6870e243812593bbc89baf2a64e306c8 27288 varnish_6.1.1-1+deb10u3.debian.tar.xz 2986da1de7acd25949b9d9ca2f97242bc6f3e60c 9504 varnish_6.1.1-1+deb10u3_amd64.buildinfo Checksums-Sha256: efb075b05ca82443badba5b9a85b2b3bec7e05aefbad967f7a2711ba6608d4b3 2092 varnish_6.1.1-1+deb10u3.dsc 98b7587780fe7225418a39c83abad2bc2638b261f97e72356accc45afd7b39f7 27288 varnish_6.1.1-1+deb10u3.debian.tar.xz cd828fc453747fdb9197ea970b0a4c9af3c07ea85d1ebec38d59ef314bcaf5c8 9504 varnish_6.1.1-1+deb10u3_amd64.buildinfo Files: f1af789f84ad1c000ee1ffe6de81b892 2092 web optional varnish_6.1.1-1+deb10u3.dsc 107ce2000044879cc19ab3fcf17861bb 27288 web optional varnish_6.1.1-1+deb10u3.debian.tar.xz 6c56a3c2edbfd94ae4a2767a6e00063a 9504 web optional varnish_6.1.1-1+deb10u3_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEEyNPZz/qecFY/MvpUv3v/BALVJL4FAmIJG+MACgkQv3v/BALV JL4Agwf/aOyPYLFSObKm412Mksp0BjlhxUCYVb/VM/Yfr4Iw829sHoj97UV7oQvw m+U/hTzD8Z5ezSHBJjPifLHpWgE2fDkf7fa8dEsOlusNys2kMWJ9WYP+GY3JA8aT +ObTwF0yBebqnca+DnSFtr9VCv8ZvqSf7j2AXCWbPHrcHSKyZ3520r+QKz7hxr1I 30SC3RaCMh+W+VZPbRyeeXFyoIhQo2K4kGdn1lwE12C82l6aPNzcjTPAvwhgCDn8 4fqPspcAUQ6Itx1npw0sYAsCZtBTL2KB1zaD9GBlQlfdQWvEByxjkvngWAURaSJA QzjweDFo+wJCoSD6ta5RDi4TSgGdlw== =CAtn -----END PGP SIGNATURE-----
