Version 1.4.27 of lighttpd

Release Notes: This release fixes SSL (SNI handling and SSL_CTX_set_options) and mod_cgi and mod_proxy (response handling). There is a new fdevent handler "libev" ("linux-rtsig" was removed). IPv6 sockets are now bound to IPv6 only in almost all cases ("dual-stack" is disabled).

Other releases

  •  12 Mar 2014 15:43

Release Notes: This release fixes hostname validation (SQL injection, path traversals) and other bugs.

  •  20 Jan 2014 16:12

Release Notes: This release fixes some security bugs (CVE-2013-4508, CVE-2013-4559, CVE-2013-4560) and contains other small fixes.

  •  27 Sep 2013 20:21

Release Notes: 1.4.33 contains small bugfixes and some minor new features.

  •  22 Nov 2012 03:13

Release Notes: This release fixes a DoS bug (CVE-2012-5533) and contains other small fixes.

  •  31 May 2012 21:15

Release Notes: Many important changes. This release fixes a segfault (a crash on the first HTTPS request), disables mmap due to a possible crash if the file is truncated while reading, and more.

Screenshot

Project Spotlight

CalDavZAP

A CalDAV Web client.

Screenshot

Project Spotlight

RosarioSIS

A Student Information System.