lighttpd
Page content
- Author: vmiklos
- Vulnerable: 1.4.19-1kalgan1
- Unaffected: 1.4.19-1kalgan2
A vulnerability has been reported in lighttpd, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to lighttpd not properly clearing the OpenSSL error queue. This can be exploited to close concurrent SSL connections of lighttpd by terminating one SSL connection.
- Bug Tracker URL: http://bugs.frugalware.org/task/2922