Debian Security Advisory DSA 1540-2 (lighttpd)

Summary
The remote host is missing an update to lighttpd announced via advisory DSA 1540-2.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201540-2
Insight
It was discovered that lighttpd, a fast webserver with minimal memory footprint, was didn't correctly handle SSL errors. This could allow a remote attacker to disconnect all active SSL connections. This security update fixes a regression in the previous one, which caused SSL failures. For the stable distribution (etch), this problem has been fixed in version 1.4.13-4etch8. We recommend that you upgrade your lighttpd package.