Name of the Vulnerable Software and Affected Versions lighttpd (affected versions not specified)

Description The issue involves several security concerns, including potential path traversal in mod alias under specific configurations or use cases, use-after-free errors due to invalid Range requests in the core, processing headers after combining folded headers in the core, and skipping usernames "." and ".." in mod userdir.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.