CVE-2019-20637

EUVD-2019-11176
An issue was discovered in Varnish Cache before 6.0.5 LTS, 6.1.x and 6.2.x before 6.2.2, and 6.3.x before 6.3.1. It does not clear a pointer between the handling of one client request and the next request within the same connection. This sometimes causes information to be disclosed from the connection workspace, such as data structures associated with previous requests within this connection or VCL-related temporary headers.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Affected Products (NVD)
VendorProductVersion
varnish-cachevarnish_cache
6.1.0 ≤
𝑥
< 6.2.2
varnish-cachevarnish_cache
6.3.0 ≤
𝑥
< 6.3.1
varnish-softwarevarnish_cache
6.0.0 ≤
𝑥
< 6.0.5
opensusebackports_sle
15.0:sp1
opensuseleap
15.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
varnish
bookworm
7.1.1-1.1
fixed
bullseye
6.5.1-1+deb11u3
fixed
bullseye (security)
6.5.1-1+deb11u3
fixed
buster
no-dsa
jessie
not-affected
sid
7.6.0-2
fixed
stretch
no-dsa
trixie
7.6.0-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
varnish
bionic
Fixed 5.2.1-1ubuntu0.1
released
eoan
ignored
focal
Fixed 6.2.1-2ubuntu0.1
released
groovy
not-affected
hirsute
not-affected
impish
not-affected
jammy
not-affected
trusty
not-affected
xenial
not-affected
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00031.html
http://varnish-cache.org/security/VSV00004.html#vsv00004
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00031.html
http://varnish-cache.org/security/VSV00004.html#vsv00004