Test ID:	1.3.6.1.4.1.25623.1.0.822647
Category:	Fedora Local Security Checks
Title:	Fedora: Security Advisory for lighttpd (FEDORA-2022-c26b19568d)
Summary:	The remote host is missing an update for the 'lighttpd'; package(s) announced via the FEDORA-2022-c26b19568d advisory.
Description:	Summary: The remote host is missing an update for the 'lighttpd' package(s) announced via the FEDORA-2022-c26b19568d advisory. Vulnerability Insight: lighttpd (pronounced /lighty/) is a secure, fast, compliant, and very flexible web server that has been optimized for high-performance environments. lighttpd uses memory and CPU efficiently and has lower resource use than other popular web servers. Its advanced feature-set (FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and much more) make lighttpd the perfect web server for all systems, small and large. Affected Software/OS: 'lighttpd' package(s) on Fedora 35. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2022-41556 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OVOSBSCMLGCHH2Z74H64ZWVDFJFQTBC2/ https://security.gentoo.org/glsa/202210-12 https://git.lighttpd.net/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50 https://github.com/lighttpd/lighttpd1.4/compare/lighttpd-1.4.66...lighttpd-1.4.67 https://github.com/lighttpd/lighttpd1.4/pull/115
Copyright	Copyright (C) 2022 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.