Package: lynx-cur
Dear maintainer,
Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:
squeeze (6.0.7) -
On Sat, Nov 10, 2012 at 09:33:36AM -0500, Thomas Dickey wrote:
> On Tue, Nov 06, 2012 at 06:52:23AM -0500, Thomas Dickey wrote:
> > On Tue, Nov 06, 2012 at 06:46:50AM -0500, Thomas Dickey wrote:
> > > The fix can be easily abstracted from the changes in dev.13
> >
> > (it is the small change made
On Tue, Nov 06, 2012 at 06:52:23AM -0500, Thomas Dickey wrote:
> On Tue, Nov 06, 2012 at 06:46:50AM -0500, Thomas Dickey wrote:
> > The fix can be easily abstracted from the changes in dev.13
>
> (it is the small change made to WWW/Library/Implementation/HTTP.c, of course).
There was a followup f
On Tue, Nov 06, 2012 at 06:46:50AM -0500, Thomas Dickey wrote:
> The fix can be easily abstracted from the changes in dev.13
(it is the small change made to WWW/Library/Implementation/HTTP.c, of course).
--
Thomas E. Dickey
http://invisible-island.net
ftp://invisible-island.net
signature.asc
On Tue, Nov 06, 2012 at 11:57:59AM +0100, Moritz Muehlenhoff wrote:
> Package: lynx-cur
> Version: 2.8.7dev9-2.1
The package list for lynx-cur doesn't list that version.
It shows 2.8.8dev.5-1 as the lowest version.
> Severity: important
> Tags: security
>
> Hi,
> please see Section 7.4 of this p
Package: lynx-cur
Version: 2.8.7dev9-2.1
Severity: important
Tags: security
Hi,
please see Section 7.4 of this paper:
http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf
This has been assigned CVE-2012-5821.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.
6 matches
Mail list logo
