Affected 5.x versions of VSV00004 Workspace information leak
ewasser at maxcluster.de
Wed Oct 23 09:37:18 UTC 2019
sometimes I'm confused about the supported versions of Varnish. This
resulted in the post "LTS time frame for Varnish 6.0.X?" on
But now I'm confused about the "VSV00004 Workspace information leak"
(https://varnish-cache.org/security/VSV00004.html) and the affected
"VSV00004 Workspace information leak" writes:
> Versions affected
> 5.0 and forward
So the version 5.0, 5.1 and 5.2 are affected by VSV00004, is that
correct? The page http://varnish-cache.org/releases/index.html states
that only versions 6.X are supported. So all varnish 5.X should update
to 6.X?! Is that conclusion correct?
More information about the varnish-misc