| Revision Date: | 2006-11-15 | Version: | 638 |
| Title: | RHSA-2006:0742: elinks security update (Critical) |
| Description: | Elinks is a text mode Web browser used from the command line that supports rendering modern web pages.
An arbitrary file access flaw was found in the Elinks SMB protocol handler. A malicious web page could have caused Elinks to read or write files with the permissions of the user running Elinks. (CVE-2006-5925)
All users of Elinks are advised to upgrade to this updated package, which resolves this issue by removing support for the SMB protocol from Elinks.
Note: this issue did not affect the Elinks package shipped with Red Hat Enterprise Linux 3, or the Links package shipped with Red Hat Enterprise Linux 2.1.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2006-5925
RHSA-2006:0742
RHSA-2006:0742-01
RHSA-2006:0742-01
|
| Platform(s): | Red Hat Enterprise Linux 4
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux must be installed OR Package Information
Red Hat Enterprise Linux 4 is installed
AND elinks is earlier than 0:0.9.2-3.3
AND elinks is signed with Red Hat redhatrelease2 key
|