Mind Booster Noori wrote:
Package: lighttpd
Followup-For: Bug #422254
As a matter of fact, these two lighttpd 1.4.13 bugs were fixed in
1.4.14, but that patches added one bug, that was fixed in lighttpd
1.4.15. Since 1.4.15 is already in testing, that release closes this
bug. This bug should be
Package: lighttpd
Followup-For: Bug #422254
As a matter of fact, these two lighttpd 1.4.13 bugs were fixed in
1.4.14, but that patches added one bug, that was fixed in lighttpd
1.4.15. Since 1.4.15 is already in testing, that release closes this
bug. This bug should be closed as a duplicate of bu
Package: lighttpd
Version: 1.4.13-4
Severity: critical
Tags: security patch
Justification: root security hole
1.4.13-4 in etch has two security flaws:
CVE-2007-1870
CVE-2007-1869
I include a patch against the debian source of 1.4.13-4 with
http://www.lighttpd.net/assets/2007/4/13/lighttpd-1.4.x_
3 matches
Mail list logo
