Security
Security
Multiple vulnerabilities have been found in Cherokee, the worst of which could result in a Denial of Service condition.
| Package | www-servers/cherokee on all architectures |
|---|---|
| Affected versions | <= 1.2.104-r2 |
| Unaffected versions |
Cherokee is an extra-light web server.
Multiple vulnerabilities have been discovered in Cherokee. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
Gentoo has discontinued support for Cherokee. We recommend that users unmerge package:
# emerge --unmerge "www-servers/cherokee"
Release date
December 23, 2020
Latest revision
December 23, 2020: 1
Severity
low
Exploitable
remote
Bugzilla entries