Debian Security Advisory
DSA-2592-1 elinks -- programming error
- Date Reported:
- 28 Dec 2012
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2012-4545.
- More information:
Marko Myllynen discovered that ELinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate.
For the testing distribution (wheezy), this problem has been fixed in version 0.12~pre5-9.
For the unstable distribution (sid), this problem has been fixed in version 0.12~pre5-9.
We recommend that you upgrade your elinks packages.