* Steve Kemp [EMAIL PROTECTED] [2008-10-06 19:29:51 CEST]:
CVE-2008-4298
A memory leak in the http_request_parse function could be used by
remote attackers to cause lighttpd to consume memory, and cause a
denial of service attack.
CVE-2008-4359
Inconsistent handling of URL
On Mon Oct 06, 2008 at 20:40:36 +0200, Gerfried Fuchs wrote:
From reading the changelog these issues have all three been addressed
in the 1.4.19-5 upload which was done a week ago already. Was this
missed, or are the patches therein considered incomplete?
This was missed.
Steve
--
2 matches
Mail list logo
