Search

Varnish Administration Console 3.9.2 Release

Published December 20, 2021.

About the release

This is a patch release that includes Log4j2 version 2.17.0, with fixes for CVE-2021-45105.

Varnish Administration Console is not vulnerable by default by CVE-2021-45105 as it requires specific configuration options that can be exploited. This release updates Log4j2 to the latest release to avoid keeping vulnerable versions of Log4j2 even if not affected by it by default.

This version is recommended for all users.

References

Manuals
Varnish Enterprise
Varnish Cloud
Varnish Controller
Varnish High Availability
Varnish Custom Statistics
Varnish WAF
Varnish Broadcaster
Varnish Helm Chart
News
Varnish Enterprise 6.0.12r8
Varnish Helm Chart 1.3.0
A note on how Varnish handles an HTTP/2 CONTINUATION flood
Varnish Enterprise 6.0.12r7
Varnish Controller 6.0.2
News archive