Описание
lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly calculate the size of a file descriptor array, which allows remote attackers to cause a denial of service (crash) via a large number of connections, which triggers an out-of-bounds access.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.4.11-3ubuntu3.6 |
| devel | released | 1.4.18-1ubuntu3 |
| edgy | released | 1.4.13~r1370-1ubuntu1.4 |
| feisty | released | 1.4.13-9ubuntu4.3 |
| gutsy | released | 1.4.18-1ubuntu1.1 |
| upstream | needed |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly calculate the size of a file descriptor array, which allows remote attackers to cause a denial of service (crash) via a large number of connections, which triggers an out-of-bounds access.
lighttpd 1.4.18, and possibly other versions before 1.5.0, does not pr ...
lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly calculate the size of a file descriptor array, which allows remote attackers to cause a denial of service (crash) via a large number of connections, which triggers an out-of-bounds access.
EPSS
5 Medium
CVSS2