11 matches found
Fedora Update for lighttpd FEDORA-2008-3343
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-3376
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-2262
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for lighttpd FEDORA-2008-2278
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200803-10 (lighttpd)
The remote host is missing updates announced in advisory GLSA 200803-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 10 Security Update : lighttpd (lighttpd-5107)
Remote attackers were able to crash lighttpd by opening a large number of connections CVE-2008-0983. - A bug in modcgi allowed remote attackers to read cgi source files CVE-2008-1111. - A bug in moduserdir allowed remote attackers to read arbitrary files CVE-2008-1270. %NASLMINLEVEL 70300 C...
Debian: Security Advisory (DSA-1513-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 7 : lighttpd-1.4.18-3.fc7 (2008-2262)
Tue Mar 4 2008 Matthias Saou 1.4.18-3 - Include patch for CVE-2008-0983 crash when low on file descriptors. - Include patch for CVE-2008-1111 cgi source disclosure. - Tue Oct 16 2007 Matthias Saou 1.4.18-2 - Include modgeoip additional source, make it an optional sub-package. - Reorder...
Fedora 8 : lighttpd-1.4.18-6.fc8 (2008-2278)
Tue Mar 4 2008 Matthias Saou 1.4.18-6 - Include patch for CVE-2008-0983 crash when low on file descriptors. - Include patch for CVE-2008-1111 cgi source disclosure. - Tue Feb 19 2008 Fedora Release Engineering - Autorebuild for GCC 4.3 - Wed Dec 5 2007 Release Engineering - Rebuild for deps - Wed...
[SECURITY] [DSA 1513-1] New lighttpd packages fix CGI source disclosure
------------------------------------------------------------------------ Debian Security Advisory DSA-1513-1 [email protected] http://www.debian.org/security/ Steve Kemp March 06, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------...
CVE-2008-1111
CVE-2008-1111 affects lighttpd 1.4.18 through the mod_cgi path. When a fork failure occurs, lighttpd may return the source code of the CGI script instead of a 500 error, potentially allowing remote attackers to obtain sensitive information (information disclosure). Connected documents indicate re...