HCE2-SA-2025-0173
An update for varnish is now available for HCE 2.0
Moderate
HCE 2.0
Security Fix(es):
Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 allow client-side desync via HTTP/1 requests. (CVE-2025-30346)
HCE 2.0
varnish-7.4.3-1.r1.hce2.aarch64.rpm
varnish-devel-7.4.3-1.r1.hce2.aarch64.rpm
varnish-help-7.4.3-1.r1.hce2.noarch.rpm
varnish-7.4.3-1.r1.hce2.x86_64.rpm
varnish-devel-7.4.3-1.r1.hce2.x86_64.rpm