[pkg-lynx-maint] [Lynx-dev] CVE-2016-9179 (invalid URL parsing with '?')
Axel Beckert
abe at debian.org
Tue Nov 15 12:00:19 UTC 2016
Hi Thomas,
Thomas Dickey wrote:
> > > Then it takes me to http://www.debian.org/
> >
> > yes - and I was using the trace to see if I'd gotten the right host.
> > The trace is (based on strace...) incorrect. I'll fix that.
Ah, I see.
> Here's the change which I just applied, which seems to work.
Thanks, will check!
> If there's no further changes needed, I'll release that as dev.11
Appreciated.
> A pointer to a web archive of this discussion would be useful.
The discussion started at
https://lists.debian.org/debian-lts/2016/11/threads.html#00072
Regards, Axel
--
,''`. | Axel Beckert <abe at debian.org>, http://people.debian.org/~abe/
: :' : | Debian Developer, ftp.ch.debian.org Admin
`. `' | 4096R: 2517 B724 C5F6 CA99 5329 6E61 2FF9 CD59 6126 16B5
`- | 1024D: F067 EA27 26B9 C3FC 1486 202E C09E 1D89 9593 0EDE
More information about the pkg-lynx-maint
mailing list