Oval Definition:oval:org.opensuse.security:def:20169179
Revision Date:2022-06-30Version:1
Title:CVE-2016-9179
Description:

lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-9179
SUSE-SU-2017:0599-1
openSUSE-SU-2017:0668-1
Mitre CVE-2016-9179
SUSE CVE-2016-9179
SUSE-SU-2017:0599-1
openSUSE-SU-2017:0668-1
Platform(s):openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • lynx-2.8.7-6.1 is installed
  • AND lynx is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND lynx-2.8.6-145 is installed
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • lynx-2.8.7-5.1 is installed
  • AND lynx is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • OR SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND lynx-2.8.7-27 is installed
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • lynx-2.8.7-9 is installed
  • AND lynx is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND lynx-2.9.0~dev.9-1.2 is installed
    • BACK