Date: Fri, 28 Mar 2008 15:43:51 +0100 From: Christian Hoffmann <hoffie@...too.org> To: oss-security@...ts.openwall.com Subject: Re: CVE request: lighttpd DoS: forcefully closing of foreign SSL connections On 2008-03-26 17:26, Christian Hoffmann wrote: > can we please get a CVE id for the following issue? > https://bugs.gentoo.org/show_bug.cgi?id=214892 > http://trac.lighttpd.net/trac/ticket/285#comment:18 > http://trac.lighttpd.net/trac/changeset/2136 > > Impact is rather low, but I think it still qualifies for DoS. Just for reference, apparently CVE-2008-1531 has been assigned to this issue, thanks to whoever did it. :) -- Christian Hoffmann Download attachment "signature.asc" of type "application/pgp-signature" (261 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.