[Git][security-tracker-team/security-tracker][master] Add CVE-2018-25103/lighttpd

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
99f0f727 by Salvatore Bonaccorso at 2024-06-18T22:39:46+02:00
Add CVE-2018-25103/lighttpd

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -311,7 +311,9 @@ CVE-2024-0397 (A defect was discovered in the Python \u201cssl\u201d module wher
 	NOTE: https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d (v3.11.9)
 	NOTE: https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa (3.9-branch)
 CVE-2018-25103 (There exists use-after-free vulnerabilities in lighttpd <= 1.4.50 requ ...)
-	TODO: check
+	- lighttpd 1.4.52-1
+	NOTE: https://github.com/lighttpd/lighttpd1.4/commit/d161f53de04bc826ce1bdaeb3dce2c72ca50a3f8 (lighttpd-1.4.50)
+	NOTE: https://github.com/lighttpd/lighttpd1.4/commit/df8e4f95614e476276a55e34da2aa8b00b1148e9 (lighttpd-1.4.51)
 CVE-2024-36973 (In the Linux kernel, the following vulnerability has been resolved:  m ...)
 	- linux <unfixed>
 	[bullseye] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f0f727e5875b2b5ece33a5aa54475fc8123d58

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99f0f727e5875b2b5ece33a5aa54475fc8123d58
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240618/42a610ce/attachment-0001.htm>