2 new security fixes in 1.4.14
Bug #106416 reported by
Lukas Fittl
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
lighttpd (Ubuntu) |
Fix Released
|
Medium
|
Lukas Fittl | ||
Bug Description
Binary package hint: lighttpd
The new lighttpd release 1.4.14 (and the hotfix release 1.4.15), contains two security fixes:
Remote DOS in CRLF parsing (http://
DOS with files with mtime 0 (http://
Please update the Ubuntu packages!
Related branches
Changed in lighttpd: | |
assignee: | nobody → lfittl |
importance: | Undecided → Medium |
status: | Unconfirmed → In Progress |
To post a comment you must log in.
Fix uploaded for feisty, {dapper, edgy}-security still without security fixes.