rpm package
opensuse/thttpd&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/thttpd&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2012-5640 | — | < 2.26-4.7 | 2.26-4.7 | Nov 25, 2019 | thttpd has a local DoS vulnerability via specially-crafted .htpasswd files | ||
| CVE-2017-17663 | Cri | 9.8 | < 2.29-3.9 | 2.29-3.9 | Feb 6, 2018 | The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution. | |
| CVE-2013-0348 | — | < 2.26-4.7 | 2.26-4.7 | Dec 13, 2013 | thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file. |
- CVE-2012-5640Nov 25, 2019affected < 2.26-4.7fixed 2.26-4.7
thttpd has a local DoS vulnerability via specially-crafted .htpasswd files
- affected < 2.29-3.9fixed 2.29-3.9
The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.
- CVE-2013-0348Dec 13, 2013affected < 2.26-4.7fixed 2.26-4.7
thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.