*** This bug is a security vulnerability *** Public security bug reported:
Binary package hint: lighttpd New upstream package available, fixes a OOM/DoS vulnerability - http://www.lighttpd.net/2010/2/7/1-4-26-chinese-dragon - http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txt I think it is a shame that neither the Ubuntu Security Team nor the ubuntu lighttpd maintainers saw this. ** Affects: lighttpd (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-0295 -- New upstream 1.4.26, fixes CVE-2010-0295 https://bugs.launchpad.net/bugs/521659 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
