Updated lighttpd packages fix security vulnerabilitiesPublication date: 03 Nov 2018
Affected Mageia releases : 6
Updated lighttpd package fixes security vulnerabilities: Potential path traversal with specific configs or in some use cases in mod_alias. use-after-free invalid Range requests in core. Process headers after combining folded headers in core. Skip username "." and ".." in mod_userdir.