|Category:||Debian Local Security Checks|
|Title:||Debian Security Advisory DSA 2592-1 (elinks - programming error)|
|Summary:||Marko Myllynen discovered that ELinks, a powerful text-mode browser,;incorrectly delegates user credentials during GSS-Negotiate.|
Marko Myllynen discovered that ELinks, a powerful text-mode browser,
incorrectly delegates user credentials during GSS-Negotiate.
elinks on Debian Linux
For the stable distribution (squeeze), this problem has been fixed in
pre5-2+squeeze1. Since the initial Squeeze release,
XULRunner needed to be updated and the version currently in the archive
disabled (only a small subset of typical functionality was supported
anyway). It will likely be re-enabled in a later point update.
For the testing distribution (wheezy), this problem has been fixed in
For the unstable distribution (sid), this problem has been fixed in
We recommend that you upgrade your elinks packages.
Common Vulnerability Exposure (CVE) ID: CVE-2012-4545|
BugTraq ID: 57065
Debian Security Information: DSA-2592 (Google Search)
RedHat Security Advisories: RHSA-2013:0250
XForce ISS Database: elinks-httpnegotiate-security-bypass(80882)
|Copyright||Copyright (C) 2013 Greenbone Networks GmbH http://greenbone.net|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.