-
lynx-cur (2.8.8dev.2-1ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: properly perform certificate verification
- debian/patches/CVE-2012-5821.dpatch: setup verification flags before
verifying the certificate and prompt on self-signed certificates
- CVE-2012-5821
* SECURITY UPDATE: fix heap overflow when parsing malformed URLs
- debian/patches/CVE-2010-2810.dpatch: modify convert_to_idna() to check
for malformed urls
- CVE-2010-2810
-- Jamie Strandboge <email address hidden> Mon, 19 Nov 2012 08:45:37 -0600
-
lynx-cur (2.8.8dev.2-1) unstable; urgency=low
* New Upstream Release.
- modify trimming of URI in LYSetCookie() to eliminate trimming of
final leaf (Closes: #460108)
* Updated rules, control and patches files.
* Changed lynx.cfg and now we set LOCALE_CHARSET:TRUE
* Added libidn11-dev to Build-Depends to fix #541694 (Closes: #541694)
-- Ubuntu Archive Auto-Sync <email address hidden> Tue, 05 Jan 2010 06:05:17 +0000
-
lynx-cur (2.8.8dev.1-1) unstable; urgency=low
* New Upstream Release.
- add optional support for IDNA using GNU libidn (Closes: #352596)
- ignore LEFT-TO-RIGHT-MARK (U+200E) in HTML files (Closes: #408835)
- correct check for return-value from gnutls_certificate_verify_peers2(),
which caused some sites to be treated as if they were version-1 X.509 CAs
(Closes: #231609)
- change compiled-in default for SYSLOG_REQUESTED_URLS to false.
(Closes: #537907)
lynx-cur (2.8.7rel.1-1) unstable; urgency=low
* New Upstream Release.
* Linked against libbsd to fix a security problem. (Closes: #532520)
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 05 Nov 2009 10:39:19 +0000
-
lynx-cur (2.8.7pre6-1) unstable; urgency=low
* New Upstream Release.
-- Ubuntu Archive Auto-Sync <email address hidden> Thu, 25 Jun 2009 07:44:09 +0100
