Ubuntu
lighttpd package

  1. Kinetic (22.10)
  2. Bug #1994989
  3. Comment #13

Comment 13 for bug 1994989

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package lighttpd - 1.4.55-1ubuntu1.20.04.2

---------------
lighttpd (1.4.55-1ubuntu1.20.04.2) focal-security; urgency=medium

  * SECURITY UPDATE: Out-of-bounds Write
    - debian/patches/CVE-2022-22707.patch: mod_extforward_Forwarded function
      of the mod_extforward plugin has a stack-based buffer overflow.
      (LP: #1994989)
    - CVE-2022-22707

 -- Jack Fewx <email address hidden> Thu, 16 Feb 2023 20:09:14 -0600