[ubuntu/dapper-security] w3m, w3m (delayed) 0.5.1-4ubuntu2.6.06.1 (Accepted)

Mon Aug 9 22:08:12 BST 2010

w3m (0.5.1-4ubuntu2.6.06.1) dapper-security; urgency=low

  * SECURITY UPDATE: perform certificate host validation
    - debian/patches/60-w3m-0.5.2-CVE-2010-2074-nulcn.diff: handle a '\0'
      character in a domain name in the CN and SAN, applied inline
    - 70-w3m-0.5.2-disable_sslv2.diff: disable SSLv2 by default,
      applied inline
    - CVE-2010-2074
    - References
      http://www.openwall.com/lists/oss-security/2010/06/14/4

Date: Mon, 02 Aug 2010 12:23:20 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Fumitoshi UKAI <ukai at debian.or.jp>
https://launchpad.net/ubuntu/dapper/+source/w3m/0.5.1-4ubuntu2.6.06.1
-------------- next part --------------
Format: 1.7
Date: Mon, 02 Aug 2010 12:23:20 -0700
Source: w3m
Binary: w3m w3m-img
Architecture: source
Version: 0.5.1-4ubuntu2.6.06.1
Distribution: dapper-security
Urgency: low
Maintainer: Fumitoshi UKAI <ukai at debian.or.jp>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 w3m        - WWW browsable pager with excellent tables/frames support
 w3m-img    - inline image extension support utilities for w3m
Changes: 
 w3m (0.5.1-4ubuntu2.6.06.1) dapper-security; urgency=low
 .
   * SECURITY UPDATE: perform certificate host validation
     - debian/patches/60-w3m-0.5.2-CVE-2010-2074-nulcn.diff: handle a '\0'
       character in a domain name in the CN and SAN, applied inline
     - 70-w3m-0.5.2-disable_sslv2.diff: disable SSLv2 by default,
       applied inline
     - CVE-2010-2074
     - References
       http://www.openwall.com/lists/oss-security/2010/06/14/4
Files: 
 c63dfd7a3190d33b6a8bf3faf00cd142 1355 text standard w3m_0.5.1-4ubuntu2.6.06.1.dsc
 61af8116989ea20fc9de2bc2035bff27 36950 text standard w3m_0.5.1-4ubuntu2.6.06.1.diff.gz