Package: lynx
Version: 2.8.5-2sarge1.1
Severity: important
Tags: patch
The version of lynx currently in sarge/updates is 2.8.5-2sarge2, but
etch and sid are at 2.8.5-2sarge1.1, which is missing the fix for
CVE-2004-1617 (see DSA-1076-1). Please add the patch from 2.8.5-2sarge2
to the latest lynx package.
(tagged this report +patch but did not include it, it is available from
lynx-2.8.5/debian/patches/04_CVE-2004-1617.dpatch in 2.8.5-2sarge2)
greetings,
Uli
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
