Launchpad.net

CVE 2022-22707

In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

Related bugs and status

CVE-2022-22707 (Candidate) is related to these bugs:

Bug #1994989: lighttpd CVE-2022-22707

		In	Importance	Status
1994989	lighttpd CVE-2022-22707	lighttpd (Ubuntu)	Undecided	Fix Released
1994989	lighttpd CVE-2022-22707	lighttpd (Ubuntu Kinetic)	Undecided	Fix Released
1994989	lighttpd CVE-2022-22707	lighttpd (Ubuntu Jammy)	Undecided	Fix Released
1994989	lighttpd CVE-2022-22707	lighttpd (Ubuntu Focal)	Undecided	Fix Released

Bug #2021548: [Debian] High CVE: CVE-2022-22707: lighttpd: a stack-based buffer overflow

Summary				In	Importance	Status
	2021548	[Debian] High CVE: CVE-2022-22707: lighttpd: a stack-based buffer overflow		StarlingX	High	Fix Released

Bug #2058045: please upgrade: lighttpd 1.4.76

Summary				In	Importance	Status
	2058045	please upgrade: lighttpd 1.4.76		lighttpd (Ubuntu)	Undecided	Confirmed

See the

CVE page on Mitre.org for more details.

References

MISC: https://redmine.lightt...
DEBIAN: DSA-5040