[Bug 521659] [NEW] New upstream 1.4.26, fixes CVE-2010-0295
Stefan Bühler
stbuehler at web.de
Sun Feb 14 11:06:28 UTC 2010
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: lighttpd
New upstream package available, fixes a OOM/DoS vulnerability
- http://www.lighttpd.net/2010/2/7/1-4-26-chinese-dragon
- http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txt
I think it is a shame that neither the Ubuntu Security Team nor the
ubuntu lighttpd maintainers saw this.
** Affects: lighttpd (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-0295
--
New upstream 1.4.26, fixes CVE-2010-0295
https://bugs.launchpad.net/bugs/521659
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list