261562 – www/varnish6: Update to 6.6.2, Fix vulnerability issue

Bug 261562 - www/varnish6: Update to 6.6.2, Fix vulnerability issue

Summary: www/varnish6: Update to 6.6.2, Fix vulnerability issue

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Many People
Assignee:	Danilo G. Baio

URL:	https://varnish-cache.org/releases/re...
Keywords:

Depends on:
Blocks:

Reported:	2022-01-29 23:14 UTC by Danilo G. Baio
Modified:	2022-02-13 11:51 UTC (History)
CC List:	1 user (show)

See Also:

Flags:	dbaio: maintainer-feedback+ dbaio: merge-quarterly+

Attachments
varnish6-6.6.2.patch (1.40 KB, patch) 2022-01-29 23:14 UTC, Danilo G. Baio	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Danilo G. Baio freebsd_committer

2022-01-29 23:14:57 UTC

Created attachment 231435 [details]
varnish6-6.6.2.patch

https://varnish-cache.org/security/VSV00008.html

Comment 1 commit-hook freebsd_committer

2022-01-29 23:18:13 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=40a8623e257711265e62046094e89686ebd272a8

commit 40a8623e257711265e62046094e89686ebd272a8
Author:     Danilo G. Baio <dbaio@FreeBSD.org>
AuthorDate: 2022-01-29 23:07:55 +0000
Commit:     Danilo G. Baio <dbaio@FreeBSD.org>
CommitDate: 2022-01-29 23:17:04 +0000

    security/vuxml: Document varnish cache vulnerability

    PR:             261562
    Security:       CVE-2022-23959

 security/vuxml/vuln-2022.xml | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)

Comment 2 commit-hook freebsd_committer

2022-02-13 11:43:05 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=a66afb75d582849e8764d49ba29f0f0f6e6c5175

commit a66afb75d582849e8764d49ba29f0f0f6e6c5175
Author:     Danilo G. Baio <dbaio@FreeBSD.org>
AuthorDate: 2022-01-29 23:09:05 +0000
Commit:     Danilo G. Baio <dbaio@FreeBSD.org>
CommitDate: 2022-02-13 11:37:53 +0000

    www/varnish6: Update to 6.6.2, Fix vulnerability issue

    Release notes: https://varnish-cache.org/releases/rel6.6.2.html#rel6-6-2

    PR:             261562
    Approved by:    maintainer timeout
    Security:       b0c83e1a-8153-11ec-84f9-641c67a117d8
    MFH:     2022Q1

 www/varnish6/Makefile | 2 +-
 www/varnish6/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

Comment 3 commit-hook freebsd_committer

2022-02-13 11:50:08 UTC

A commit in branch 2022Q1 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=8af37003e94b87e2caf5cf4c3c43e26d247bdb90

commit 8af37003e94b87e2caf5cf4c3c43e26d247bdb90
Author:     Danilo G. Baio <dbaio@FreeBSD.org>
AuthorDate: 2022-01-29 23:09:05 +0000
Commit:     Danilo G. Baio <dbaio@FreeBSD.org>
CommitDate: 2022-02-13 11:45:13 +0000

    www/varnish6: Update to 6.6.2, Fix vulnerability issue

    Release notes: https://varnish-cache.org/releases/rel6.6.2.html#rel6-6-2

    PR:             261562
    Approved by:    maintainer timeout
    Security:       b0c83e1a-8153-11ec-84f9-641c67a117d8
    MFH:     2022Q1

    (cherry picked from commit a66afb75d582849e8764d49ba29f0f0f6e6c5175)

 www/varnish6/Makefile | 2 +-
 www/varnish6/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)