ELSA-2008-0965

ULN >
Oracle Linux Errata repository >
ELSA-2008-0965

ELSA-2008-0965 - lynx security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2008-10-27

Description

[2.8.5-28.1.1]
- add patch for CVE-2008-4690 (rhbz#468184)
- prompt user before executing commands from the lynxcgi: handler,
even in the advanced user mode
- mark all lynxcgi: URIs as untrusted in the default lynx.cfg
- add patch to prevent lynx from opening configuration files in the
current working directory (CVE to be assigned) (rhbz#214205)

Related CVEs

CVE-2006-7234

CVE-2008-4690

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 3 (i386)	lynx-2.8.5-11.3.src.rpm	ba5768ac84b1e87c130006f3e8e6f0adf59253d3cdf91a11414f7f82454469da	-	el3_i386_latest
	lynx-2.8.5-11.3.src.rpm	ba5768ac84b1e87c130006f3e8e6f0adf59253d3cdf91a11414f7f82454469da	-	el3_u9_i386_patch
	lynx-2.8.5-11.3.i386.rpm	e0c497af8ca1f51aa3d47a6f699d29d8a6f7b92cd8f6797fc976e50b28f4c236	-	el3_i386_latest
	lynx-2.8.5-11.3.i386.rpm	e0c497af8ca1f51aa3d47a6f699d29d8a6f7b92cd8f6797fc976e50b28f4c236	-	el3_u9_i386_patch

Oracle Linux 3 (x86_64)	lynx-2.8.5-11.3.src.rpm	ba5768ac84b1e87c130006f3e8e6f0adf59253d3cdf91a11414f7f82454469da	-	el3_u9_x86_64_patch
	lynx-2.8.5-11.3.src.rpm	ba5768ac84b1e87c130006f3e8e6f0adf59253d3cdf91a11414f7f82454469da	-	el3_x86_64_latest
	lynx-2.8.5-11.3.x86_64.rpm	81cf9e692c1ff2aa8a8529e682ee28d059d0b4c08dfd679e243628740917e411	-	el3_u9_x86_64_patch
	lynx-2.8.5-11.3.x86_64.rpm	81cf9e692c1ff2aa8a8529e682ee28d059d0b4c08dfd679e243628740917e411	-	el3_x86_64_latest

Oracle Linux 4 (i386)	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_i386_latest
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u7_i386_patch
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u8_i386_base
	lynx-2.8.5-18.2.el4_7.1.i386.rpm	0fb471d1bcfa5fc8afa7a39f3892e99e5a166494a24dfe4a8cfba451bd5dd336	-	el4_i386_latest
	lynx-2.8.5-18.2.el4_7.1.i386.rpm	0fb471d1bcfa5fc8afa7a39f3892e99e5a166494a24dfe4a8cfba451bd5dd336	-	el4_u7_i386_patch
	lynx-2.8.5-18.2.el4_7.1.i386.rpm	0fb471d1bcfa5fc8afa7a39f3892e99e5a166494a24dfe4a8cfba451bd5dd336	-	el4_u8_i386_base

Oracle Linux 4 (ia64)	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_ia64_latest
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u7_ia64_patch
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u8_ia64_base
	lynx-2.8.5-18.2.el4_7.1.ia64.rpm	5f392794eebd3f9a3ca9dec0a0f5aac7e0c85aebcea544b8ddd05666ef33a01b	-	el4_ia64_latest
	lynx-2.8.5-18.2.el4_7.1.ia64.rpm	5f392794eebd3f9a3ca9dec0a0f5aac7e0c85aebcea544b8ddd05666ef33a01b	-	el4_u7_ia64_patch
	lynx-2.8.5-18.2.el4_7.1.ia64.rpm	5f392794eebd3f9a3ca9dec0a0f5aac7e0c85aebcea544b8ddd05666ef33a01b	-	el4_u8_ia64_base

Oracle Linux 4 (x86_64)	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u7_x86_64_patch
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_u8_x86_64_base
	lynx-2.8.5-18.2.el4_7.1.src.rpm	f11b034d2116dce9293af742f2808eb447a9be7eea06e081b9a8fde74409d7b3	-	el4_x86_64_latest
	lynx-2.8.5-18.2.el4_7.1.x86_64.rpm	754d55e40b1fe592e88f2e1d61dd23f796a515f1e4168924846f8dd4a3f3ebdb	-	el4_u7_x86_64_patch
	lynx-2.8.5-18.2.el4_7.1.x86_64.rpm	754d55e40b1fe592e88f2e1d61dd23f796a515f1e4168924846f8dd4a3f3ebdb	-	el4_u8_x86_64_base
	lynx-2.8.5-18.2.el4_7.1.x86_64.rpm	754d55e40b1fe592e88f2e1d61dd23f796a515f1e4168924846f8dd4a3f3ebdb	-	el4_x86_64_latest

Oracle Linux 5 (i386)	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u2_i386_patch
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u3_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u4_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u5_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_i386_latest
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u10_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u11_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u6_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u7_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u8_i386_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u9_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	el5_u2_i386_patch
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	el5_u3_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	el5_u4_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	el5_u5_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_i386_latest
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u10_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u11_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u6_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u7_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u8_i386_base
	lynx-2.8.5-28.1.el5_2.1.i386.rpm	577fd62501aa996b6069bad9439561bd56932d042ec3db7ed5083ddc32b4f73e	-	ol5_u9_i386_base

Oracle Linux 5 (ia64)	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u4_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u5_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_ia64_latest
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u10_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u11_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u6_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u7_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u8_ia64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u9_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	el5_u4_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	el5_u5_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_ia64_latest
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u10_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u11_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u6_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u7_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u8_ia64_base
	lynx-2.8.5-28.1.el5_2.1.ia64.rpm	8db55cf2be435061cbc65016e31b47e04bda93199d7a726a8ac34a8f4aac9652	-	ol5_u9_ia64_base

Oracle Linux 5 (x86_64)	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u2_x86_64_patch
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u3_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u4_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	el5_u5_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u10_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u11_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u6_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u7_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u8_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_u9_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.src.rpm	b8b1580aea64b63f50475010b679115e7310ec0557e0af2944bbe28985e03456	-	ol5_x86_64_latest
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	el5_u2_x86_64_patch
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	el5_u3_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	el5_u4_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	el5_u5_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u10_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u11_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u6_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u7_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u8_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_u9_x86_64_base
	lynx-2.8.5-28.1.el5_2.1.x86_64.rpm	2d59c6670628dbd922ad7ac0b357e47739434d15e71d5804ede2e94a4ed8180c	-	ol5_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691