elinks-0.12-0.21.pre5.AXS4

エラータID: AXSA:2013-110:01

Release date: 
Wednesday, March 6, 2013 - 12:05
Subject: 
elinks-0.12-0.21.pre5.AXS4
Affected Channels: 
Asianux Server 4 for x86
Asianux Server 4 for x86_64
Severity: 
High
Description: 

Links is a text-based Web browser. Links does not display any images, but it does support frames, tables and most other HTML tags. Links' advantage over graphical browsers is its speed--Links starts and exits quickly and swiftly displays Web pages.

Security issues fixed with this release:

• CVE-2012-4545
The http_negotiate_create_context function in protocol/http/http_negotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials.

Solution: 

Update packages.

CVEs: 
CVE-2012-4545
The http_negotiate_create_context function in protocol/http/http_negotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials through GSSAPI, which allows remote servers to authenticate as the client via the delegated credentials.


Additional Info: 

N/A

Download: 

SRPMS
  1. elinks-0.12-0.21.pre5.AXS4.src.rpm
    MD5: 92860de915fb3e4633e8a02b4a29a920
    SHA-256: d050cbcf6a7bbaccb076923c288a5994cf8b1c6668a0c36785bf04f851e7b66c
    Size: 2.68 MB

Asianux Server 4 for x86
  1. elinks-0.12-0.21.pre5.AXS4.i686.rpm
    MD5: 23677cec6a39fb9abc3fccb6745f45d3
    SHA-256: 27997a45427b805414ecad44b77048d01c09915cfb5ab680a114f417903a999d
    Size: 812.63 kB

Asianux Server 4 for x86_64
  1. elinks-0.12-0.21.pre5.AXS4.x86_64.rpm
    MD5: 3aab0185dd63f533a2a605987fb4b3ee
    SHA-256: d629f6523b7436f560cb65a76d567dc7ba7475482fec77fc401a11f293a42c83
    Size: 834.70 kB