Lucene search
GoogleOSV:CVE-2022-22707HistoryJan 06, 2022 - 6:15 a.m.
CVE-2022-22707
2022-01-0606:15:07
Google
osv.dev
13
lighttpd
mod_extforward
buffer overflow
EPSS
0.031
Percentile
91.2%
In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.
Related
osv
osv
lighttpd-1.4.64-1.1 on GA media
2024-06-15 00:00:00
lighttpd - security update
2022-01-11 00:00:00
lighttpd vulnerabilities
2023-02-28 15:42:16
ubuntucve
ubuntucve
CVE-2022-22707
2022-01-06 00:00:00
nessus
nessus
openSUSE 15 Security Update : lighttpd (openSUSE-SU-2022:0024-1)
2022-02-03 00:00:00
Debian DSA-5040-1 : lighttpd - security update
2022-01-12 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : lighttpd vulnerabilities (USN-5903-1)
2023-03-01 00:00:00
debiancve
debiancve
CVE-2022-22707
2022-01-06 06:15:07
debian
debian
[SECURITY] [DSA 5040-1] lighttpd security update
2022-01-11 19:42:26
alpinelinux
alpinelinux
CVE-2022-22707
2022-01-06 06:15:07
veracode
veracode
Buffer Overflow
2022-01-15 12:07:00
prion
prion
Stack overflow
2022-01-06 06:15:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0161)
2022-05-09 00:00:00
Lighttpd 1.4.46 - 1.4.63 DoS Vulnerability
2022-01-11 00:00:00
Debian: Security Advisory (DSA-5040-1)
2022-01-12 00:00:00
nvd
nvd
CVE-2022-22707
2022-01-06 06:15:07
suse
suse
Security update for lighttpd (important)
2022-02-02 00:00:00
cnvd
cnvd
lighttpd buffer overflow vulnerability
2022-01-08 00:00:00
mageia
mageia
Updated lighttpd packages fix security vulnerability
2022-05-06 23:16:39
cvelist
cvelist
CVE-2022-22707
2022-01-06 05:55:30
cve
cve
CVE-2022-22707
2022-01-06 06:15:07
ubuntu
ubuntu
lighttpd vulnerabilities
2023-02-28 00:00:00