TEMP-0000000-37DBC3

NameTEMP-0000000-37DBC3
Descriptionuse after free / double free
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
lighttpd (PTS)jessie, jessie (lts)1.4.35-4+deb8u1fixed
stretch (security), stretch (lts), stretch1.4.45-1+deb9u1fixed
buster (security), buster, buster (lts)1.4.53-4+deb10u3fixed
bullseye (security), bullseye1.4.59-1+deb11u2fixed
bookworm1.4.69-1fixed
sid, trixie1.4.76-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
lighttpdsourcesqueeze(not affected)
lighttpdsourcewheezy(not affected)
lighttpdsourcejessie(not affected)
lighttpdsource(unstable)1.4.39-1

Notes

[jessie] - lighttpd <not-affected> (Regression introduced in 1.4.36)
[wheezy] - lighttpd <not-affected> (Regression introduced in 1.4.36)
[squeeze] - lighttpd <not-affected> (Regression introduced in 1.4.36)
http://redmine.lighttpd.net/issues/2700
Introduced in 1.4.36: http://web.archive.org/web/20150906061055/http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2976

Search for package or bug name: Reporting problems