Re: lynx-dev Potential security hole?

lynx-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: lynx-dev Potential security hole?

From:	Klaus Weide
Subject:	Re: lynx-dev Potential security hole?
Date:	Sat, 18 Sep 1999 01:31:17 -0500 (CDT)

On Fri, 17 Sep 1999, Don Kozlowski wrote:
> Hi there...
> 
> I've just run across an announcement of a security hole in lynx. The
> site that announced it doesn't appear to be offering the source patch to
> fix it, and they don't appear to have an AIX binary. I can't find any
> reference to it on the lynx pages, and our site is vulnerable. Have you
> been notified of this bug, and if so, is there a patch that I can
> download to fix it? Thanks in advance...

See the messages with subject "[Linux] glibc 2.1.x / wu-ftpd <=2.5" [etc.]
in this month's list archive,
<http://www.flora.org/lynx-dev/html/month0999/>.

Or just use the latest development code (see
<http://sol.slcc.edu/lynx/current/>), which seems to be what SuSE are
doing (just going by their package filename).  The patch is in dev.9.

   Klaus

[Prev in Thread]

Current Thread

[Next in Thread]

lynx-dev Potential security hole?, Don Kozlowski, 1999/09/18
- Re: lynx-dev Potential security hole?, Klaus Weide <=
- Re: lynx-dev Potential security hole?, T.E.Dickey, 1999/09/18

Prev by Date: lynx-dev leading the pack, as usual
Next by Date: lynx-dev How to set a timeout on connects (was: [ No subject at all ] )
Previous by thread: lynx-dev Potential security hole?
Next by thread: Re: lynx-dev Potential security hole?
Index(es):
- Date
- Thread