Description
Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU consumption from stuck connections) because connection_read_header_more in connections.c has a typo that disrupts use of multiple read operations on large headers.
Remediation
References
Related Vulnerabilities
Artifactory Missing Authorization Vulnerability (CVE-2019-10323)
WordPress Plugin Real-Time Find and Replace Cross-Site Request Forgery (3.9)
WordPress Plugin Internal Links Manager Unspecified Vulnerability (2.0.1)
MySQL CVE-2017-3644 Vulnerability (CVE-2017-3644)
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Request Forgery (3.4.9.9)