This bug was fixed in the package varnish - 6.5.2-1ubuntu0.2
--------------- varnish (6.5.2-1ubuntu0.2) impish-security; urgency=medium
* SECURITY UPDATE: HTTP Request Smuggling - debian/patches/CVE-2022-23959.patch: Mark req doclose when failing to ignore req body. (LP: #1971504) CVE-2022-23959
-- Luís Infante da Câmara <email address hidden> Wed, 04 May 2022 23:10:18 +0100
This bug was fixed in the package varnish - 6.5.2-1ubuntu0.2
---------------
varnish (6.5.2-1ubuntu0.2) impish-security; urgency=medium
* SECURITY UPDATE: HTTP Request Smuggling patches/ CVE-2022- 23959.patch: Mark req doclose when failing 2022-23959
- debian/
to ignore req body. (LP: #1971504)
CVE-
-- Luís Infante da Câmara <email address hidden> Wed, 04 May 2022 23:10:18 +0100