[ubuntu/lucid-security] lynx-cur 2.8.8dev.2-1ubuntu0.1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Nov 29 21:03:14 UTC 2012

lynx-cur (2.8.8dev.2-1ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: properly perform certificate verification
    - debian/patches/CVE-2012-5821.dpatch: setup verification flags before
      verifying the certificate and prompt on self-signed certificates
    - CVE-2012-5821
  * SECURITY UPDATE: fix heap overflow when parsing malformed URLs
    - debian/patches/CVE-2010-2810.dpatch: modify convert_to_idna() to check
      for malformed urls
    - CVE-2010-2810

Date: 2012-11-19 15:41:15.321021+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Lucid-changes mailing list