[pkg-lighttpd] Bug#428368: lighttpd: 1.4.15 is vulnerable too

Cyril Brulebois cyril.brulebois at enst-bretagne.fr
Mon Jul 16 01:02:19 UTC 2007

Olaf van der Spek <OlafvdSpek at GMail.Com> (11/06/2007):
> 1.4.15 is vulnerable too.


I'm unable to reproduce this, but FWIW, it looks like upstream has fixed
this problem, see [1]. The patch on src/request.c applies cleanly on

 1. http://trac.lighttpd.net/trac/ticket/1232


Cyril Brulebois
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-lighttpd-maintainers/attachments/20070716/f6ccbb5b/attachment.pgp 

More information about the pkg-lighttpd-maintainers mailing list