Lucene search
Gentoo FoundationMGASA-2014-0133HistoryMar 19, 2014 - 9:28 p.m.
Updated lighttpd package fixes security vulnerabilities
2014-03-1921:28:38
Gentoo Foundation
advisories.mageia.org
17
0.96 High
EPSS
Percentile
99.5%
SQL injection vulnerability in lighttpd before 1.4.35 when mod_mysql_vhost is in use, due to insufficient validation of hostnames in HTTP requests (CVE-2014-2323). Possible path traversal vulnerabilities in lighttpd before 1.4.35 when either mod_evhost or mod_simple_vhost are in use, due to insufficient validation of hostnames in HTTP requests (CVE-2014-2324).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | lighttpd | < 1.4.32-3.7 | lighttpd-1.4.32-3.7.mga3 |
| Mageia | 4 | noarch | lighttpd | < 1.4.33-4.1 | lighttpd-1.4.33-4.1.mga4 |
Related
fedora
fedora
[SECURITY] Fedora 20 Update: lighttpd-1.4.35-1.fc20
2014-03-25 08:15:56
[SECURITY] Fedora 19 Update: lighttpd-1.4.35-1.fc19
2014-03-25 08:14:59
openvas
openvas
Fedora Update for lighttpd FEDORA-2014-3947
2014-04-03 00:00:00
SuSE Update for lighttpd openSUSE-SU-2014:0496-1 (lighttpd)
2014-04-10 00:00:00
Debian Security Advisory DSA 2877-1 (lighttpd - security update)
2014-03-12 00:00:00
suse
suse
lighttpd to 1.4.35 (important)
2014-04-08 21:06:06
lighttpd to 1.4.35 (important)
2014-03-26 17:04:44
Security update for lighttpd (important)
2014-04-03 19:04:18
nessus
nessus
openSUSE Security Update : lighttpd (openSUSE-SU-2014:0449-1)
2014-06-13 00:00:00
lighttpd < 1.4.35 Multiple Vulnerabilities
2014-03-13 00:00:00
lighttpd < 1.4.35 Multiple Vulnerabilities
2014-03-20 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-24 00:00:00
lighttpd security vulnerabilities
2014-03-24 00:00:00
debian
debian
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-13 04:28:52
[SECURITY] [DSA 2877-1] lighttpd security update
2014-03-13 04:28:29
amazon
amazon
Medium: lighttpd
2014-06-03 14:50:00
osv
osv
lighttpd - security update
2014-03-12 00:00:00
prion
prion
Sql injection
2014-03-14 15:55:00
Directory traversal
2014-03-14 15:55:00
ubuntucve
ubuntucve
CVE-2014-2323
2014-03-14 00:00:00
CVE-2014-2324
2014-03-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Lighttpd Host Header mod_mysql_vhost SQL Injection (CVE-2014-2323)
2014-04-06 00:00:00
nuclei
nuclei
Lighttpd 1.4.34 SQL Injection and Path Traversal
2021-07-26 17:18:45
debiancve
debiancve
CVE-2014-2323
2014-03-14 15:55:00
CVE-2014-2324
2014-03-14 15:55:00
seebug
seebug
lighttpd 'mod_mysql_vhost.c' SQL注入漏洞
2014-03-28 00:00:00
lighttpd目录遍历漏洞
2014-03-19 00:00:00
cve
cve
CVE-2014-2323
2014-03-14 15:55:00
CVE-2014-2324
2014-03-14 15:55:00
cvelist
cvelist
CVE-2014-2323
2014-03-14 15:00:00
CVE-2014-2324
2014-03-14 15:00:00
kitploit
kitploit
Vision2 - Nmap's XML result parse and NVD's CPE correlation to search CVE
2017-09-08 13:30:00
jvn
jvn
JVN#37417423: Multiple vulnerabilities in SolarView Compact
2021-02-19 00:00:00
gentoo
gentoo
lighttpd: Multiple vulnerabilities
2014-06-13 00:00:00