From 6e78b7af5db61b59521a05e1ca1d911759403dc3 Mon Sep 17 00:00:00 2001
From: CentOS Sources <bugs@centos.org>
Date: Oct 05 2021 11:40:36 +0000
Subject: import varnish-6.0.8-1.module+el8.5.0+11919+2c98a2b6


---

diff --git a/.gitignore b/.gitignore
index 918cc33..84741e1 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,2 @@
 SOURCES/pkg-varnish-cache-0ad2f22.tar.gz
-SOURCES/varnish-6.0.6.tgz
+SOURCES/varnish-6.0.8.tgz
diff --git a/.varnish.metadata b/.varnish.metadata
index aa082b2..597d7a5 100644
--- a/.varnish.metadata
+++ b/.varnish.metadata
@@ -1,2 +1,2 @@
 db2cd6c296e7f19d65c09e642b7011338d9d0e04 SOURCES/pkg-varnish-cache-0ad2f22.tar.gz
-c9cdd61f46d70b1bf8cb5eac3510aa3f4cf5c326 SOURCES/varnish-6.0.6.tgz
+7c5e50eabcd3c0ddb6c463ba4645678a2f71233a SOURCES/varnish-6.0.8.tgz
diff --git a/SPECS/varnish.spec b/SPECS/varnish.spec
index f2036a3..bcd941a 100644
--- a/SPECS/varnish.spec
+++ b/SPECS/varnish.spec
@@ -18,8 +18,8 @@
 
 Summary: High-performance HTTP accelerator
 Name: varnish
-Version: 6.0.6
-Release: 2%{?dist}
+Version: 6.0.8
+Release: 1%{?dist}
 License: BSD
 Group: System Environment/Daemons
 URL: https://www.varnish-cache.org/
@@ -371,6 +371,11 @@ fi
 
 
 %changelog
+* Thu Jul 22 2021 Luboš Uhliarik <luhliari@redhat.com> - 6.0.8-1
+- new version 6.0.8
+- Resolves: #1982862 - CVE-2021-36740 varnish:6/varnish: HTTP/2 request
+  smuggling attack via a large Content-Length header for a POST request
+
 * Tue Apr 14 2020 Lubos Uhliarik <luhliari@redhat.com> - 6.0.6-2
 - new version 6.0.6
 - Resolves: #1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS