Multiple vulnerabilities in lighttpd < 1.4.30 may allow remote denial of service and information disclosure
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4362
Patch:
http://download.lighttpd.net/lighttpd/security/lighttpd\_sa\_2011\_01.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389
Patch: http://redmine.lighttpd.net/issues/2364
http://www.debian.org/security/2011/dsa-2368
(from redmine: issue id 887, created on 2011-12-28, closed on 2012-01-04)
- Changesets:
- Revision 5f9a8b27 by Natanael Copa on 2012-01-03T13:30:07Z:
main/lighttpd: security upgrade to 1.4.30 (CVE-2011-3389, CVE-2011-4362)
fixes #887