13 matches found
Fedora Update for lighttpd FEDORA-2008-3376
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-3343
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-2262
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-2278
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200803-10 (lighttpd)
The remote host is missing updates announced in advisory GLSA 200803-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1609-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1609-1 : lighttpd - various
Several local/remote vulnerabilities have been discovered in lighttpd, a fast webserver with minimal memory footprint. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0983 lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly...
openSUSE 10 Security Update : lighttpd (lighttpd-5107)
Remote attackers were able to crash lighttpd by opening a large number of connections CVE-2008-0983. - A bug in modcgi allowed remote attackers to read cgi source files CVE-2008-1111. - A bug in moduserdir allowed remote attackers to read arbitrary files CVE-2008-1270. %NASLMINLEVEL 70300 C...
Fedora 7 : lighttpd-1.4.18-3.fc7 (2008-2262)
Tue Mar 4 2008 Matthias Saou 1.4.18-3 - Include patch for CVE-2008-0983 crash when low on file descriptors. - Include patch for CVE-2008-1111 cgi source disclosure. - Tue Oct 16 2007 Matthias Saou 1.4.18-2 - Include modgeoip additional source, make it an optional sub-package. - Reorder...
Fedora 8 : lighttpd-1.4.18-6.fc8 (2008-2278)
Tue Mar 4 2008 Matthias Saou 1.4.18-6 - Include patch for CVE-2008-0983 crash when low on file descriptors. - Include patch for CVE-2008-1111 cgi source disclosure. - Tue Feb 19 2008 Fedora Release Engineering - Autorebuild for GCC 4.3 - Wed Dec 5 2007 Release Engineering - Rebuild for deps - Wed...
rPSA-2008-0084-1 lighttpd
rPath Security Advisory: 2008-0084-1 Published: 2008-02-28 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: lighttpd=conary.rpath.com@rpl:1/1.4.18-0.2-1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-22...
CVE-2008-0983
lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly calculate the size of a file descriptor array, which allows remote attackers to cause a denial of service crash via a large number of connections, which triggers an out-of-bounds access...
CVE-2008-0983
The CVE concerns lighttpd 1.4.18 and possibly earlier versions before 1.5.0, where a miscalculation of the size of the file descriptor array can cause an out-of-bounds access under a large number of connections. This permits remote attackers to trigger a denial of service via crashes. Public deta...