[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1175-1] lynx-cur security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : lynx-cur
Version        : 2.8.8dev.12-2+deb7u2
CVE ID         : CVE-2017-1000211

It was discovered that there was a use-after-free vulnerability in the
HTML parser of lynx-cur, a terminal-based web browser. This could have
led to memory/information disclosure.

For Debian 7 "Wheezy", this issue has been fixed in lynx-cur version
2.8.8dev.12-2+deb7u2.

We recommend that you upgrade your lynx-cur packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAloPkQ8ACgkQHpU+J9Qx
Hlhubg//YzGYJhx42RtyqSvVdfNGMnr2P4+Vqvg2gDPWQ96Onuzb1GDL6y6ff09D
6isvXCkPK0nIJBI0I4SlmOyJwY3jkcGrfOAQ66eIaUWBSNlmbRq507VZ+Nng7ox8
irEB2IvEMSNMkD6/9Q0Duv3u8sNgdmePCW9PZflSGADVoHzp2+aQMrAYiD1xKOvJ
qFN2P3HAlAdaki8kW/CKJOh/tAL1urMCaPG0jYO401ayJC7GhKvZab0nskHZdwPk
43uZUtYnrPTSx24e0wqdhFwEys/j/9oLVRAi2lGmrSqlNViRKezj+FsJlyBR8Lmf
oOEGwkI7qafEzA2Z+vFooj6Z8v1RUGNyBF/vWz6tReW9MEoYZUl6b6M3omL7LADk
P618q3EZnxLMxZqO9hBAKzOFMv0iiuQDKLBBI2d2SUihJ87pcGxjR41m7EW7jTqY
tYqbmnqcUI2XkMG9dyFoVRs7/R1SDNfIneoItUPG7zuSLFgI6dp3/rjQR1+Fm6FH
adVzEukFf0pcIHy6q5LzYr7r1/FCubGXe5vHgO0ZdiwGJnpGgTWNXTlT+sX5a9Ny
ZgQJMHewSBy4O6DLrRl386OPXuUf3US6k1VTsDxG+0VUfP+bEdkS5QGG88WuwmVs
3E/gT/gE97/GMWprxsnmkg4ETx+jxcsMpo2mNhhqQhbNzS+2kgk=
=n4FT
-----END PGP SIGNATURE-----


Reply to: