Comment 14 for bug 279490

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package lighttpd - 1.4.19-0ubuntu3.1

---------------
lighttpd (1.4.19-0ubuntu3.1) hardy-security; urgency=low

  * SECURITY UPDATE: (LP: #279490)
   + debian/patches/93_CVE-2008-4298.dpatch
    - Fix memory leak in request header handling
   + debian/patches/95_CVE-2008-4360.dpatch
    - Fix mod_userdir information disclosure
  * References
   + https://bugs.launchpad.net/bugs/cve/2008-4298
   + https://bugs.launchpad.net/bugs/cve/2008-4360

 -- Marcin Gibula <email address hidden> Wed, 04 Mar 2009 13:42:05 +0100