PublicDate: 2008-03-04 23:44:00 UTC
Candidate: CVE-2008-1111
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1111
Description:
 mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of
 a 500 error when a fork failure occurs, which might allow remote attackers
 to obtain sensitive information.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/lighttpd/+bug/198731
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_lighttpd:
upstream_lighttpd: needs-triage
dapper_lighttpd: released (1.4.11-3ubuntu3.7)
edgy_lighttpd: released (1.4.13~r1370-1ubuntu1.5)
feisty_lighttpd: released (1.4.13-9ubuntu4.4)
gutsy_lighttpd: released (1.4.18-1ubuntu1.2)
devel_lighttpd: released (1.4.18-1ubuntu5)