Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to cause a denial of service (segmentation fault and crash) via unspecified vectors that trigger FAMMonitorDirectory failures.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-dev" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-doc" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-mod-cml" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-mod-magnet" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-mod-mysql-vhost" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-mod-trigger-b4-dl" }, { "binary_version": "1.4.33-1+nmu2ubuntu2", "binary_name": "lighttpd-mod-webdav" } ] }