CVE-2017-12425: Integer Overflow
First published: Tue Aug 01 2017(Updated: )
An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. A wrong if statement in the varnishd source code means that particular invalid requests from the client can trigger an assert, related to an Integer Overflow. This causes the varnishd worker process to abort and restart, losing the cached contents in the process. An attacker can therefore crash the varnishd worker process on demand and effectively keep it from serving content - a Denial-of-Service attack. The specific source-code filename containing the incorrect statement varies across releases.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/varnish | <4.0.5 | 4.0.5 |
| redhat/varnish | <4.1.8 | 4.1.8 |
| redhat/varnish | <5.1.3 | 5.1.3 |
| Varnish-cache Varnish | =4.0.2-rc-1 | |
| Varnish-cache Varnish | =4.0.3-rc-1 | |
| Varnish-cache Varnish | =4.0.3-rc-2 | |
| Varnish-cache Varnish | =4.0.3-rc-2-proper | |
| Varnish-cache Varnish | =4.0.3-rc-3 | |
| Varnish Cache Project Varnish Cache | =4.0.1 | |
| Varnish Cache Project Varnish Cache | =4.0.2 | |
| Varnish Cache Project Varnish Cache | =4.0.3 | |
| Varnish Cache Project Varnish Cache | =4.0.4 | |
| Varnish-cache Varnish | =4.1.0 | |
| Varnish-software Varnish Cache | =4.1.0-beta1 | |
| Varnish-software Varnish Cache | =4.1.0-technology_preview1 | |
| Varnish-software Varnish Cache | =4.1.1 | |
| Varnish-software Varnish Cache | =4.1.1-beta1 | |
| Varnish-software Varnish Cache | =4.1.1-beta2 | |
| Varnish-software Varnish Cache | =4.1.2 | |
| Varnish-software Varnish Cache | =4.1.2-beta1 | |
| Varnish-software Varnish Cache | =4.1.2-beta2 | |
| Varnish-software Varnish Cache | =4.1.3 | |
| Varnish-software Varnish Cache | =4.1.3-beta1 | |
| Varnish-software Varnish Cache | =4.1.3-beta2 | |
| Varnish-software Varnish Cache | =4.1.4 | |
| Varnish-software Varnish Cache | =4.1.4-beta1 | |
| Varnish-software Varnish Cache | =4.1.4-beta2 | |
| Varnish-software Varnish Cache | =4.1.4-beta3 | |
| Varnish-software Varnish Cache | =4.1.5 | |
| Varnish-software Varnish Cache | =4.1.5-beta1 | |
| Varnish-software Varnish Cache | =4.1.5-beta2 | |
| Varnish-software Varnish Cache | =4.1.6 | |
| Varnish-software Varnish Cache | =4.1.7 | |
| Varnish Cache Project Varnish Cache | =5.0.0 | |
| Varnish Cache Project Varnish Cache | =5.1.0 | |
| Varnish Cache Project Varnish Cache | =5.1.1 | |
| Varnish Cache Project Varnish Cache | =5.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307655&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307655&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307656&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307656&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307657&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307657&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307658&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1307658&action=edit
- https://www.varnish-cache.org/security/VSV00001.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1477699
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1477698
- https://bugzilla.redhat.com/show_bug.cgi?id=1477222
- http://www.debian.org/security/2017/dsa-3924
- https://bugzilla.suse.com/show_bug.cgi?id=1051917
- https://github.com/varnishcache/varnish-cache/issues/2379
- https://lists.debian.org/debian-security-announce/2017/msg00186.html
- https://www.varnish-cache.org/security/VSV00001.html#vsv00001
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-12425
- agent/software-canonical-lookup
- vendor/varnish-cache
- canonical/varnish-cache varnish
- version/varnish-cache varnish/4.0.2-rc-1
- version/varnish-cache varnish/4.0.3-rc-1
- version/varnish-cache varnish/4.0.3-rc-2
- version/varnish-cache varnish/4.0.3-rc-2-proper
- version/varnish-cache varnish/4.0.3-rc-3
- vendor/varnish cache project
- canonical/varnish cache project varnish cache
- version/varnish cache project varnish cache/4.0.1
- version/varnish cache project varnish cache/4.0.2
- version/varnish cache project varnish cache/4.0.3
- version/varnish cache project varnish cache/4.0.4
- version/varnish-cache varnish/4.1.0
- vendor/varnish-software
- canonical/varnish-software varnish cache
- version/varnish-software varnish cache/4.1.0-beta1
- version/varnish-software varnish cache/4.1.0-technology_preview1
- version/varnish-software varnish cache/4.1.1
- version/varnish-software varnish cache/4.1.1-beta1
- version/varnish-software varnish cache/4.1.1-beta2
- version/varnish-software varnish cache/4.1.2
- version/varnish-software varnish cache/4.1.2-beta1
- version/varnish-software varnish cache/4.1.2-beta2
- version/varnish-software varnish cache/4.1.3
- version/varnish-software varnish cache/4.1.3-beta1
- version/varnish-software varnish cache/4.1.3-beta2
- version/varnish-software varnish cache/4.1.4
- version/varnish-software varnish cache/4.1.4-beta1
- version/varnish-software varnish cache/4.1.4-beta2
- version/varnish-software varnish cache/4.1.4-beta3
- version/varnish-software varnish cache/4.1.5
- version/varnish-software varnish cache/4.1.5-beta1
- version/varnish-software varnish cache/4.1.5-beta2
- version/varnish-software varnish cache/4.1.6
- version/varnish-software varnish cache/4.1.7
- version/varnish cache project varnish cache/5.0.0
- version/varnish cache project varnish cache/5.1.0
- version/varnish cache project varnish cache/5.1.1
- version/varnish cache project varnish cache/5.1.2
- package-manager/redhat