From owner-svn-ports-head@FreeBSD.ORG Sat Jan 25 09:24:38 2014 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id DEC70BE0; Sat, 25 Jan 2014 09:24:38 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id B0D451F77; Sat, 25 Jan 2014 09:24:38 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.7/8.14.7) with ESMTP id s0P9Oc9N023047; Sat, 25 Jan 2014 09:24:38 GMT (envelope-from koobs@svn.freebsd.org) Received: (from koobs@localhost) by svn.freebsd.org (8.14.7/8.14.7/Submit) id s0P9OcpF023046; Sat, 25 Jan 2014 09:24:38 GMT (envelope-from koobs@svn.freebsd.org) Message-Id: <201401250924.s0P9OcpF023046@svn.freebsd.org> From: Kubilay Kocak Date: Sat, 25 Jan 2014 09:24:38 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r340998 - head/security/vuxml X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Jan 2014 09:24:38 -0000 Author: koobs Date: Sat Jan 25 09:24:38 2014 New Revision: 340998 URL: http://svnweb.freebsd.org/changeset/ports/340998 QAT: https://qat.redports.org/buildarchive/r340998/ Log: Document Varnish HTTP Cache < 3.0.5 DoS Vulnerability Reviewed by: remko Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Sat Jan 25 09:15:12 2014 (r340997) +++ head/security/vuxml/vuln.xml Sat Jan 25 09:24:38 2014 (r340998) @@ -51,6 +51,52 @@ Note: Please add new entries to the beg --> + + varnish -- DoS vulnerability in Varnish HTTP cache + + + varnish + 3.0.5 + + + + +

Varnish Cache Project reports:

+
If Varnish receives a certain illegal request, and the subroutine + 'vcl_error{}' restarts the request, the varnishd worker process + will crash with an assert. +
+
The varnishd management process will restart the worker process, but + there will be a brief interruption of service and the cache will be + emptied, causing more traffic to go to the backend. +
+
We are releasing this advisory because restarting from vcl_error{} is both fairly common and documented.
+
This is purely a denial of service vulnerability, there is no risk of privilege escalation.
+
Workaround
+
Insert this at the top of your VCL file:
+
+		sub vcl_error {
+			if (obj.status == 400 || obj.status == 413) {
+				return(deliver);
+			}
+		}
+
+		Or add this test at the top of your existing vcl_error{}.
+	  
+

+ + + + CVE-2013-4484 + https://www.varnish-cache.org/lists/pipermail/varnish-announce/2013-October/000686.html + + + 2013-10-30 + 2014-01-25 + + + linux-flashplugin -- multiple vulnerabilities