oval:org.mitre.oval:def:13441

Definition Id: oval:org.mitre.oval:def:13441

Oval ID:	oval:org.mitre.oval:def:13441
Title:	DSA-1987-1 lighttpd -- denial of service
Description:	Li Ming discovered that lighttpd, a small and fast webserver with minimal memory footprint, is vulnerable to a denial of service attack due to bad memory handling. Slowly sending very small chunks of request data causes lighttpd to allocate new buffers for each read instead of appending to old ones. An attacker can abuse this behaviour to cause denial of service conditions due to memory exhaustion. For the oldstable distribution, this problem has been fixed in version 1.4.13-4etch12. For the stable distribution, this problem has been fixed in version 1.4.19-5+lenny1. For the testing and unstable distribution, this problem will be fixed soon. We recommend that you upgrade your lighttpd packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1987-1 CVE-2010-0295	Version:	5
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	lighttpd
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independet section Installed architecture is all AND lighttpd-doc DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd-mod-mysql-vhost DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd-mod-magnet DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd-mod-cml DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd-mod-webdav DPKG is earlier than 1.4.19-5+lenny1 AND lighttpd-mod-trigger-b4-dl DPKG is earlier than 1.4.19-5+lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independet section Installed architecture is all AND lighttpd-doc DPKG is earlier than 1.4.13-4etch12 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section lighttpd-mod-mysql-vhost DPKG is earlier than 1.4.13-4etch12 AND lighttpd-mod-magnet DPKG is earlier than 1.4.13-4etch12 AND lighttpd DPKG is earlier than 1.4.13-4etch12 AND lighttpd-mod-cml DPKG is earlier than 1.4.13-4etch12 AND lighttpd-mod-webdav DPKG is earlier than 1.4.13-4etch12 AND lighttpd-mod-trigger-b4-dl DPKG is earlier than 1.4.13-4etch12

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:13441

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:13441

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0306s

Facebook rss twitter linkedin mail