CVE-2026-40396: Varnish Cache 9 before 9.0.1 allows a "workspace overflow" denial of service (daemon panic) after timeout_linger. A mali

Description

A vulnerability has been found in varnish-software Varnish Cache up to 9.0.0 and classified as problematic. The impacted element is the function timeout_linger. Performing a manipulation results in incorrect control flow. Remote exploitation of the attack is possible. The affected component should be upgraded.

Affected Products

Vendor	Product	Versions
varnish-	varnish cache	9.0.0

References

Related News (1 articles)

Tier C

VulDB2h ago

CVE-2026-40396 | varnish-software Varnish Cache up to 9.0.0 timeout_linger control flow

→ No new info (linked only)

CVE-2026-40396: Varnish Cache 9 before 9.0.1 allows a "workspace overflow" denial of service (daemon panic) after timeout_linger. A mali

Description

Affected Products

References

Related News (1 articles)

Community Vote

Related CVEs (2)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History