Project

General

Profile

Activity

From 2025-06-28 to 2025-07-04

2025-07-03

07:36 Lighttpd Bug #3287: [Security] Critical Race Condition in readlink() and chmod() – leads to TOCTOU vulnerability (CWE-362) / Version Latest Release in Github 1.4.79
attachment deleted without being viewed gstrauss

2025-07-01

05:55 Lighttpd Bug #3287: [Security] Critical Race Condition in readlink() and chmod() – leads to TOCTOU vulnerability (CWE-362) / Version Latest Release in Github 1.4.79
See also lighttpd.conf option [[Server_follow-symlinksDetails|server.follow-symlink]], which is not race-free, but do... gstrauss
05:49 Lighttpd Bug #3287 (Missing Feedback): [Security] Critical Race Condition in readlink() and chmod() – leads to TOCTOU vulnerability (CWE-362) / Version Latest Release in Github 1.4.79
Please demonstrate that you are not a bot and this is not AI generated dreck.
The existence of the use of @chmod@ do...
gstrauss

2025-06-30

13:20 Lighttpd Bug #3287 (Missing Feedback): [Security] Critical Race Condition in readlink() and chmod() – leads to TOCTOU vulnerability (CWE-362) / Version Latest Release in Github 1.4.79
*Summary*
Lighttpd web server source code contains a TOCTOU (Time-of-Check to Time-of-Use) race condition vulnerabil...
azqzazq
 

Also available in: Atom