Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:28901
HistoryJan 02, 2013 - 12:00 a.m.

[SECURITY] [DSA 2592-1] elinks security update

2013-01-0200:00:00
vulners.com
14
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Debian Security Advisory DSA-2592-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
December 28, 2012 http://www.debian.org/security/faq

Package : elinks
Vulnerability : programming error
Problem type : remote
Debian-specific: no
CVE ID : CVE-2012-4545

Marko Myllynen discovered that elinks, a powerful text-mode browser,
incorrectly delegates user credentials during GSS-Negotiate.

For the stable distribution (squeeze), this problem has been fixed in
version 0.12~pre5-2+squeeze1. Since the initial Squeeze release
Xulrunner needed to be updated and the version currently in the archive
is incompatible with Elinks. As such, Javascript support needed to be
disabled (only a small subset of typical functionality was supported
anyway). It will likely be re-enabled in a later point update

For the testing distribution (wheezy), this problem has been fixed in
version 0.12~pre5-9.

For the unstable distribution (sid), this problem has been fixed in
version 0.12~pre5-9.

We recommend that you upgrade your elinks packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlDdEEgACgkQXm3vHE4uyloZXACg4mj3PpAsZfOX7YTOiYCfAAU5
9S8AoKQNPnIs2c9vJwnhDqfPbNGqXJVg
=zBUI
-----END PGP SIGNATURE-----

Related

securityvulns 1
openvas 15
fedora 4
oraclelinux 1
nessus 8
redhat 1
cve 1
centos 1
veracode 1
prion 1
ubuntucve 1
debiancve 1
debian 1
securityvulns
securityvulns
elinks authentication relaing
2013-01-02 00:00:00
openvas
openvas
Fedora Update for elinks FEDORA-2013-0265
2013-01-15 00:00:00
Oracle: Security Advisory (ELSA-2013-0250)
2015-10-06 00:00:00
Fedora Update for elinks FEDORA-2013-0207
2013-01-21 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: elinks-0.12-0.29.pre5.fc17
2013-01-14 04:19:16
[SECURITY] Fedora 18 Update: elinks-0.12-0.32.pre5.fc18
2013-01-14 04:05:30
[SECURITY] Fedora 18 Update: elinks-0.12-0.33.pre6.fc18
2013-10-14 17:20:40
oraclelinux
oraclelinux
elinks security update
2013-02-11 00:00:00
nessus
nessus
CentOS 5 / 6 : elinks (CESA-2013:0250)
2013-02-12 00:00:00
Oracle Linux 5 / 6 : elinks (ELSA-2013-0250)
2013-07-12 00:00:00
Scientific Linux Security Update : elinks on SL5.x, SL6.x i386/x86_64 (20130211)
2013-02-12 00:00:00
redhat
redhat
(RHSA-2013:0250) Moderate: elinks security update
2013-02-11 00:00:00
cve
cve
CVE-2012-4545
2013-01-03 01:55:00
centos
centos
elinks security update
2013-02-11 18:29:01
veracode
veracode
Authentication Bypass
2019-01-15 08:56:04
prion
prion
Authentication flaw
2013-01-03 01:55:00
ubuntucve
ubuntucve
CVE-2012-4545
2013-01-03 00:00:00
debiancve
debiancve
CVE-2012-4545
2013-01-03 01:55:00
debian
debian
[SECURITY] [DSA 2592-1] elinks security update
2012-12-28 03:37:23
JSON
Related for SECURITYVULNS:DOC:28901
securityvulns1openvas15fedora4oraclelinux1nessus8redhat1cve1centos1veracode1prion1ubuntucve1debiancve1debian1