[pkg-lynx-maint] CVE-2016-9179 (invalid URL parsing with '?')

[Brian May]

Axel Beckert <abe at debian.org> writes:

> since your mail went to debian-lts, too, I've allowed myself, to also
> Cc upstream and the Debian Lynx Packaging Team on that discussion.

Am I correct in my understanding that upstream Lynx development has no
publicly accessible revision control system (cvs, svn, git, etc) for
hosting their source code?
-- 
Brian May <bam at debian.org>