Publishing details

• Published on 2021-10-09

Changelog

lynx (2.8.9rel.1-3+deb10u1) buster-security; urgency=high

  * Apply fix from Lynx 2.9.0dev.9 for CVE-2021-38165 to fix leakage of
    username and password in the TLS 1.2 SNI Extension if username and
    password were given in the URL, i.e. as https://user:<email address hidden>/
    (Closes: #991971)

 -- Axel Beckert <email address hidden>  Tue, 10 Aug 2021 01:54:10 +0200

Builds

Package files

• lynx_2.8.9rel.1-3+deb10u1.debian.tar.xz (28.7 KiB)
• lynx_2.8.9rel.1-3+deb10u1.dsc (2.5 KiB)
• lynx_2.8.9rel.1.orig.tar.bz2 (2.6 MiB)
• lynx_2.8.9rel.1.orig.tar.bz2.asc (251 bytes)