Oval Definition:	oval:com.ubuntu.precise:def:20125533000
Revision Date: 2012-11-24 Version: 1 Title: CVE-2012-5533 on Ubuntu 12.04 LTS (precise) - medium. Description: The http_request_split_value function in request.c in lighttpd before 1.4.32 allows remote attackers to cause a denial of service (infinite loop) via a request with a header containing an empty token, as demonstrated using the "Connection: TE,,Keep-Alive" header. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-5533 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'lighttpd' package in precise is not affected (note: '1.4.28-2ubuntu4').
BACK