Branches for Feisty

Name Status Last Modified Last Commit
lp:ubuntu/feisty/lighttpd 1 Development 2009-12-18 13:13:50 UTC 2009-12-18
21. * Added LDAP connection leak fix from...

Author: Lukas Fittl
Revision Date: 2007-04-14 05:26:10 UTC

* Added LDAP connection leak fix from Debian (Bug: #413917)
  - debian/patches/03_ldap_leak_bugfix.dpatch
* Added security fixes from 1.4.14 (Closes LP: #106416)
  - Remote DOS in CRLF parsing (CVE-2007-1869)
     debian/patches/04_security_crlf_parsing_dos.dpatch
  - DOS with files with mtime 0 (CVE-2007-1870)
     debian/patches/05_security_zero_mtime_crash.dpatch

lp:ubuntu/feisty-security/lighttpd bug 1 Development 2009-08-15 03:21:22 UTC 2009-08-15
27. * SECURITY UPDATE: (LP: #209627) + d...

Author: Emanuele Gentili
Revision Date: 2008-04-06 23:55:30 UTC

* SECURITY UPDATE: (LP: #209627)
 + debian/patches/91_CVE-2008-1531.dpatch
  - lighttpd 1.4.19 and earlier allows remote attackers to cause a denial
    of service (active SSL connection loss) by triggering an SSL error,
    such as disconnecting before a download has finished, which causes
    all active SSL connections to be lost.
* References
 + http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1531
 + http://trac.lighttpd.net/trac/changeset/2136
 + http://trac.lighttpd.net/trac/changeset/2139

lp:ubuntu/feisty-updates/lighttpd 1 Development 2009-08-15 03:20:05 UTC 2009-08-15
27. * SECURITY UPDATE: (LP: #209627) + d...

Author: Emanuele Gentili
Revision Date: 2008-04-06 23:55:30 UTC

* SECURITY UPDATE: (LP: #209627)
 + debian/patches/91_CVE-2008-1531.dpatch
  - lighttpd 1.4.19 and earlier allows remote attackers to cause a denial
    of service (active SSL connection loss) by triggering an SSL error,
    such as disconnecting before a download has finished, which causes
    all active SSL connections to be lost.
* References
 + http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1531
 + http://trac.lighttpd.net/trac/changeset/2136
 + http://trac.lighttpd.net/trac/changeset/2139

13 of 3 results