[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: lynx-dev Potential security hole?
From: |
Klaus Weide |
Subject: |
Re: lynx-dev Potential security hole? |
Date: |
Sat, 18 Sep 1999 01:31:17 -0500 (CDT) |
On Fri, 17 Sep 1999, Don Kozlowski wrote:
> Hi there...
>
> I've just run across an announcement of a security hole in lynx. The
> site that announced it doesn't appear to be offering the source patch to
> fix it, and they don't appear to have an AIX binary. I can't find any
> reference to it on the lynx pages, and our site is vulnerable. Have you
> been notified of this bug, and if so, is there a patch that I can
> download to fix it? Thanks in advance...
See the messages with subject "[Linux] glibc 2.1.x / wu-ftpd <=2.5" [etc.]
in this month's list archive,
<http://www.flora.org/lynx-dev/html/month0999/>.
Or just use the latest development code (see
<http://sol.slcc.edu/lynx/current/>), which seems to be what SuSE are
doing (just going by their package filename). The patch is in dev.9.
Klaus