Lucene search
K

10 matches found

OpenVAS
OpenVAS
added 2023/03/02 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-5903-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.08969EPSS
Exploits5References2
OSV
OSV
added 2022/05/06 8:16 p.m.6 views

MGASA-2022-0161 Updated lighttpd packages fix security vulnerability

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS5.8AI score0.08969EPSS
Exploits1References4
Mageia
Mageia
added 2022/05/06 8:16 p.m.47 views

Updated lighttpd packages fix security vulnerability

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS1AI score0.08969EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/02/03 12:0 a.m.41 views

openSUSE 15 Security Update : lighttpd (openSUSE-SU-2022:0024-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0024-1 advisory. - In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes...

5.9CVSS6.3AI score0.08969EPSS
Exploits1References6
OSV
OSV
added 2022/02/02 12:46 p.m.5 views

OPENSUSE-SU-2022:0024-1 Security update for lighttpd

This update for lighttpd fixes the following issues: lighttpd was updated to 1.4.64: CVE-2022-22707: off-by-one stack overflow in the modextforward plugin boo1194376 graceful restart/shutdown timeout changed from 0 disabled to 8 seconds. configure an alternative with: server.feature-flags +=...

5.9CVSS6.8AI score0.08969EPSS
Exploits1References5
OSV
OSV
added 2022/01/22 11:3 a.m.3 views

OESA-2022-1491 lighttpd security update

Secure, fast, compliant and very flexible web-server which has been optimized for high-performance environments. It has a very low memory footprint compared to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many more...

5.9CVSS7.3AI score0.08969EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/01/12 12:0 a.m.33 views

Debian DSA-5040-1 : lighttpd - security update

The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5040 advisory. An out-of-bounds memory access was discovered in the modextforward plugin of the lighttpd web server, which may result in denial of service. For the oldstable...

5.9CVSS5.9AI score0.08969EPSS
Exploits1References6
Debian
Debian
added 2022/01/11 7:42 p.m.57 views

[SECURITY] [DSA 5040-1] lighttpd security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5040-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 11, 2022 https://www.debian.org/security/faq -...

5.9CVSS5.9AI score0.08969EPSS
Exploits1
CVE
CVE
added 2022/01/06 5:55 a.m.1363 views

CVE-2022-22707

CVE-2022-22707 affects lighttpd 1.4.46–1.4.63 via the mod_extforward_Forwarded function, causing a stack-based buffer overflow (4-byte boundary) that can lead to remote denial of service. The issue is more likely on 32-bit systems and occurs in non-default Forwarded header handling. Connected adv...

5.9CVSS5.7AI score0.08969EPSS
Exploits1References2Affected Software1
AlpineLinux
AlpineLinux
added 2022/01/06 5:55 a.m.28 views

CVE-2022-22707

In lighttpd 1.4.46 through 1.4.63, the modextforwardForwarded function of the modextforward plugin has a stack-based buffer overflow 4 bytes representing -1, as demonstrated by remote denial of service daemon crash in a non-default configuration. The non-default configuration requires handling of...

5.9CVSS6.1AI score0.08969EPSS
Exploits1
Rows per page
Query Builder