| |||||||||||||||||||
Fedora alert FEDORA-2012-9078 (lighttpd)
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-9078 2012-06-07 22:11:44 -------------------------------------------------------------------------------- Name : lighttpd Product : Fedora 16 Version : 1.4.31 Release : 1.fc16 URL : http://www.lighttpd.net/ Summary : Lightning fast webserver with light system requirements Description : Secure, fast, compliant and very flexible web-server which has been optimized for high-performance environments. It has a very low memory footprint compared to other webservers and takes care of cpu-load. Its advanced feature-set (FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many more) make it the perfect webserver-software for every server that is suffering load problems. -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2011-4362 by updating to the latest release. It also fixes problems that had been reported with previous releases, such as ssl-related crashes on startup. This update fixes some minor SSL related problems, as well as a connection stall bug. This update fixes some minor SSL related problems, as well as a connection stall bug. This update fixes some minor SSL related problems, as well as a connection stall bug. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 6 2012 Matthias Saou <matthias@saou.eu> 1.4.31-1 - Update to 1.4.31 (#828198). * Tue Apr 17 2012 Jon Ciesla <limburgher@gmail.com> - 1.4.30-2 - service file patch per BZ 720210. * Mon Mar 26 2012 Matthias Saou <matthias@saou.eu> 1.4.30-1 - Update to 1.4.30 (#768903). - Update mod_geoip patch. - Remove upstreamed ssl_no_ecdh patch. * Fri Feb 10 2012 Petr Pisar <ppisar@redhat.com> - 1.4.29-3 - Rebuild against PCRE 8.30 * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.29-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Sun Aug 21 2011 Matthias Saou <matthias@saou.eu> 1.4.29-1 - Re-update to 1.4.29, including ssl_no_ecdh to fix build (#625737). -------------------------------------------------------------------------------- References: [ 1 ] Bug #758624 - CVE-2011-4362 lighttpd: Out of bounds read due to a signedness error (DoS, crash) https://bugzilla.redhat.com/show_bug.cgi?id=758624 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update lighttpd' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-... (Log in to post comments)
|
|||||||||||||||||||