Added by juangacovas 11 months ago
Hello, just asking: is lighttpd affected by the new http2 continuation flood attack?
https://nowotarski.info/http2-continuation-flood/
Since unfortunately, the affected/not affected list on that page simply doesn't list lighttpd
Thanks!
https://kb.cert.org/vuls/id/421644 does list lighttpd with vendor statement that lighttpd is not affected. Please click the link "View all 121 vendors" on the page.