Date: Tue, 26 May 2009 10:18:50 -0700 (PDT) From: Jakub Lach <jakub_lach@mailplus.pl> To: freebsd-security@freebsd.org Subject: FYI Lighttpd 1.4.23 /kernel (trailing '/' on regular file symlink) vulnerability Message-ID: <23727599.post@talk.nabble.com>
next in thread | raw e-mail | index | archive | help
http://www.milw0rm.com/exploits/8786 http://redmine.lighttpd.net/issues/1989 http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/21768 affected: FreeBSD, OSX, Solaris < 10 not affected: Linux, NetBSD, OpenBSD, DragonflyBSD, Solaris 10 -- View this message in context: http://www.nabble.com/FYI-Lighttpd-1.4.23--kernel-%28trailing-%27-%27-on-regular-file-symlink%29-vulnerability-tp23727599p23727599.html Sent from the freebsd-security mailing list archive at Nabble.com.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?23727599.post>