1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
Candidate: CVE-2013-4560
PublicDate: 2013-11-20
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4560
http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2013_03.txt
Description:
Use-after-free vulnerability in lighttpd before 1.4.33 allows remote
attackers to cause a denial of service (segmentation fault and crash) via
unspecified vectors that trigger FAMMonitorDirectory failures.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_lighttpd:
upstream: http://download.lighttpd.net/lighttpd/security/lighttpd-1.4.33_fix_fam_use_after_free.patch
upstream_lighttpd: pending (1.4.33)
lucid_lighttpd: ignored (reached end-of-life)
precise_lighttpd: ignored (reached end-of-life)
precise/esm_lighttpd: DNE (precise was needed)
quantal_lighttpd: ignored (reached end-of-life)
raring_lighttpd: ignored (reached end-of-life)
saucy_lighttpd: ignored (reached end-of-life)
trusty_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
utopic_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
vivid_lighttpd: not-affected
vivid/stable-phone-overlay_lighttpd: DNE
vivid/ubuntu-core_lighttpd: DNE
wily_lighttpd: not-affected
xenial_lighttpd: not-affected
yakkety_lighttpd: not-affected
zesty_lighttpd: not-affected
devel_lighttpd: not-affected
|