FYI Lighttpd 1.4.23 /kernel (trailing '/' on regular file symlink) vulnerability

[Jakub Lach]

http://www.milw0rm.com/exploits/8786

http://redmine.lighttpd.net/issues/1989

http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/21768

affected: FreeBSD, OSX, Solaris < 10
not affected: Linux, NetBSD, OpenBSD, DragonflyBSD, Solaris 10
-- 
View this message in context: http://www.nabble.com/FYI-Lighttpd-1.4.23--kernel-%28trailing-%27-%27-on-regular-file-symlink%29-vulnerability-tp23727599p23727599.html
Sent from the freebsd-security mailing list archive at Nabble.com.