VYPR

rpm package

opensuse/thttpd&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/thttpd&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2012-5640Nov 25, 2019
    affected < 2.26-4.7fixed 2.26-4.7

    thttpd has a local DoS vulnerability via specially-crafted .htpasswd files

  • CVE-2017-17663CriFeb 6, 2018
    affected < 2.29-3.9fixed 2.29-3.9

    The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.

  • CVE-2013-0348Dec 13, 2013
    affected < 2.26-4.7fixed 2.26-4.7

    thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.