gs/254780
Title:
CVE-2008-3329 Links2 when "only proxies" is selected, don't pass URLs
to external programs
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/links2/+bug/254780/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.
when "only proxies" is selected, don't pass URLs
to external programs
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/links2/+bug/254780/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
** Tags added: patch patch-needswork
--
CVE-2008-3329 Links2 when "only proxies" is selected, don't pass URLs to
external programs
https://bugs.launchpad.net/bugs/254780
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs m
The 18 month support period for Gutsy Gibbon 7.10 has reached its end of life -
http://www.ubuntu.com/news/ubuntu-7.10-eol . As a result, we are closing the
Gutsy task.
** Changed in: links2 (Ubuntu Gutsy)
Status: New => Won't Fix
--
CVE-2008-3329 Links2 when "only proxies" is selected, d
Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued
for this release. Marking Feisty as Won't Fix.
** Changed in: links2 (Ubuntu Feisty)
Status: New => Won't Fix
--
CVE-2008-3329 Links2 when "only proxies" is selected, don't pass URLs to
external programs
https://bugs
Thanks for the patch and sorry for the delay. Unfortunetly, it FTBFS.
Can you update it and resubmit? Please detail all testing performed. I
have marked the bug 'Incomplete' for now-- please mark back to 'In
Progress' after resubmitting the patch.
** Changed in: links2 (Ubuntu Hardy)
Statu
** Attachment added: "hardy_security_links2_2.1pre32-1ubuntu0.1.debdiff"
http://launchpadlibrarian.net/16533660/hardy_security_links2_2.1pre32-1ubuntu0.1.debdiff
--
CVE-2008-3329 Links2 when "only proxies" is selected, don't pass URLs to
external programs
https://bugs.launchpad.net/bugs/25
Fixed in Intrepid via Debian Merge.
** Changed in: links2 (Ubuntu Intrepid)
Importance: Undecided => Medium
Assignee: (unassigned) => Emanuele Gentili (emgent)
Status: New => Fix Released
** Changed in: links2 (Ubuntu Hardy)
Importance: Undecided => Medium
Assignee: (unassi
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: links2
* SECURITY UPDATE:
+ session.c:
- Make sure links cannot bypass the proxy, if it is
configurered only to use it in order to avoid leaking
of sensitive information to exter
