[Technik] [SECURITY] [DSA 1380-1] New elinks packages fix
information disclosure
Noèl Köthe
noel at debian.org
Thu Oct 4 12:11:42 CEST 2007
Am Dienstag, den 02.10.2007, 23:34 +0100 schrieb Steve Kemp:
> Debian Security Advisory DSA 1380-1 security at debian.org
> http://www.debian.org/security/ Steve Kemp
> October 2nd, 2007 http://www.debian.org/security/faq
>
> Package : elinks
> Vulnerability : programming error
> Problem type : remote
> Debian-specific: no
> CVE Id(s) : CVE-2007-5034
> Debian Bug : 443891
elinks auf yuma aktualisiert.
> For the stable distribution (etch), this problem has been fixed in version
> 0.11.1-1.2etch1.
changelog:
elinks (0.11.1-1.2etch1) stable-security; urgency=high
* Non-maintainer upload by The Security Team.
* Avoid leaking information when using POST over an SSL proxy.
[CVE-2007-5034]
-- Steve Kemp <skx at debian.org> Men, 24 Sep 2007 21:50:05 +0000
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : /archiv/technik/attachments/20071004/91d9b75d/attachment.pgp
More information about the Technik
mailing list