[lighttpd] [CVE-2008-1531] DoS vulnerability via incorrectly handled SSL errors
Bug #214975 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
lighttpd (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: lighttpd
References:
DSA-1540-1 (http://
Quoting:
"It was discovered that lighttpd, a fast webserver with minimal memory
footprint, was didn't correctly handle SSL errors. This could allow
a remote attacker to disconnect all active SSL connections."
CVE References
To post a comment you must log in.
In future, please check https:/ /launchpad. net/bugs/ cve/CVE- XXXX-XXXX for duplicates first, as they might not be visible in Ubuntu lists due to being fixed in all releases.