Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-4298HistorySep 27, 2008 - 10:30 a.m.
CVE-2008-4298
2008-09-2710:30:03
Debian Security Bug Tracker
security-tracker.debian.org
6
0.111 Low
EPSS
Percentile
95.2%
Memory leak in the http_request_parse function in request.c in lighttpd before 1.4.20 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests with duplicate request headers.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lighttpd | < 1.4.19-5 | lighttpd_1.4.19-5_all.deb |
| Debian | 11 | all | lighttpd | < 1.4.19-5 | lighttpd_1.4.19-5_all.deb |
| Debian | 10 | all | lighttpd | < 1.4.19-5 | lighttpd_1.4.19-5_all.deb |
| Debian | 999 | all | lighttpd | < 1.4.19-5 | lighttpd_1.4.19-5_all.deb |
| Debian | 13 | all | lighttpd | < 1.4.19-5 | lighttpd_1.4.19-5_all.deb |
Related
prion
prion
Memory corruption
2008-09-27 10:30:00
cvelist
cvelist
CVE-2008-4298
2008-09-27 00:00:00
ubuntucve
ubuntucve
CVE-2008-4298
2008-09-27 00:00:00
cve
cve
CVE-2008-4298
2008-09-27 10:30:03
openvas
openvas
Fedora Core 9 FEDORA-2008-11923 (lighttpd)
2009-02-13 00:00:00
FreeBSD Ports: lighttpd
2008-10-03 00:00:00
Gentoo Security Advisory GLSA 200812-04 (lighttpd)
2008-12-03 00:00:00
gentoo
gentoo
lighttpd: Multiple vulnerabilities
2008-12-02 00:00:00
nessus
nessus
Fedora 9 : lighttpd-1.4.20-6.fc9 (2008-11923)
2009-02-13 00:00:00
Debian DSA-1645-1 : lighttpd - various
2008-10-07 00:00:00
openSUSE Security Update : lighttpd (lighttpd-309)
2009-07-21 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: lighttpd-1.4.20-6.fc9
2009-02-12 20:37:45
debian
debian
[SECURITY] [DSA-1645-1] New lighttpd packages fix various problems
2008-10-06 17:29:51
securityvulns
securityvulns
lighthttpd multiple security vulnerabilities
2008-10-06 00:00:00
[SECURITY] [DSA-1645-1] New lighttpd packages fix various problems
2008-10-06 00:00:00
osv
osv
lighttpd - various problems
2008-10-06 00:00:00
freebsd
freebsd
lighttpd -- multiple vulnerabilities
2008-09-26 00:00:00
