Ubuntu Security Update USN-7372-1: Varnish vulnerability

[LinuxBot]

Martin van Kervel Smedshammer discovered that Varnish did not properly sanitize certain HTTP headers. A remote attacker could possibly use this issue to perform a cross-site request forgery (CSRF) attack.

Continue reading...