Stay Vigilant with Timely Linux Security Advisories

security advisorysecurity issueRed Hat

Red Hat: RHSA-2013-0250-01 Moderate: ELinks Client Credentials Issue

An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: elinks security update Advisory ID: RHSA-2013:0250-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2013:0250.html Issue date: 2013-02-11 CVE Names: CVE-2012-4545 ==================================================================== 1. Summary: An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 3. Description: ELinks is a text-based web browser. ELinks does not display any images, but it does support frames, tables, and most other HTML tags. It was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI. (CVE-2012-4545) This issue was discovered by Marko Myllynen of Red Hat. All ELinksusers are advised to upgrade to this updated package, which contains a backported patch to resolve the issue. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 864566 - CVE-2012-4545 elinks: Improper delegation of client credentials during GSS negotiation 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: elinks-0.11.1-8.el5_9.i386.rpm elinks-debuginfo-0.11.1-8.el5_9.i386.rpm x86_64: elinks-0.11.1-8.el5_9.x86_64.rpm elinks-debuginfo-0.11.1-8.el5_9.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: elinks-0.11.1-8.el5_9.i386.rpm elinks-debuginfo-0.11.1-8.el5_9.i386.rpm ia64: elinks-0.11.1-8.el5_9.ia64.rpm elinks-debuginfo-0.11.1-8.el5_9.ia64.rpm ppc: elinks-0.11.1-8.el5_9.ppc.rpm elinks-debuginfo-0.11.1-8.el5_9.ppc.rpm s390x: elinks-0.11.1-8.el5_9.s390x.rpm elinks-debuginfo-0.11.1-8.el5_9.s390x.rpm x86_64: elinks-0.11.1-8.el5_9.x86_64.rpm elinks-debuginfo-0.11.1-8.el5_9.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm ppc64: elinks-0.12-0.21.pre5.el6_3.ppc64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.ppc64.rpm s390x: elinks-0.12-0.21.pre5.el6_3.s390x.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.s390x.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2012-4545 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFRGTVvXlSAg2UNWIIRAiwtAKC1ibbfsQBhbX0iOhj7/3Eu5bdUSACdGyIg 9nqD0pXT28YC2LKWLIQswVA=rju5 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A revised elinks bundle is now ready for Red Hat, presenting a slight security concern for users.. elinks update, Red Hat advisory, client credentials, GSSAPI security, security fix. . LinuxSecurity.com Team

Feb 11, 2013 Red Hat

security advisorymoderateinformation disclosure

Scientific Linux: Moderate Elinks Security Update CVE-2012-4545

Moderate: elinks security update. Date: Mon, 11 Feb 2013 14:03:23 -0600 Reply-To: Pat Riehecky Sender: Security Errata for Scientific Linux From: Pat Riehecky Organization: Fermilab Subject: Security ERRATA Moderate: elinks on SL5.x, SL6.x i386/x86_64 Synopsis: Moderate: elinks security update Issue Date: 2013-02-11 CVE Numbers: CVE-2012-4545 -- It was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI. (CVE-2012-4545) -- SL5 x86_64 elinks-0.11.1-8.el5_9.x86_64.rpm elinks-debuginfo-0.11.1-8.el5_9.x86_64.rpm i386 elinks-0.11.1-8.el5_9.i386.rpm elinks-debuginfo-0.11.1-8.el5_9.i386.rpm SL6 x86_64 elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm i386 elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm - Scientific Linux Development Team . The recent elinks security update for Scientific Linux is vital for mitigating the risk of credential theft via server impersonation. Users should upgrade now. Elinks Update, Security Advisory, Scientific Linux, Credential Theft, Moderate Severity. . LinuxSecurity.com Team

Feb 11, 2013 Scientific Linux

security advisorymoderatesecurity issue

Red Hat Enterprise Linux: RHSA-2013:0250-01 Moderate: ELinks Security Issue

An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: elinks security update Advisory ID: RHSA-2013:0250-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2013:0250.html Issue date: 2013-02-11 CVE Names: CVE-2012-4545 ==================================================================== 1. Summary: An updated elinks package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 3. Description: ELinks is a text-based web browser. ELinks does not display any images, but it does support frames, tables, and most other HTML tags. It was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI. (CVE-2012-4545) This issue was discovered by Marko Myllynen of Red Hat. All ELinks users are advised to upgrade to this updated package, which contains a backported patch to resolve theissue. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 864566 - CVE-2012-4545 elinks: Improper delegation of client credentials during GSS negotiation 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: elinks-0.11.1-8.el5_9.i386.rpm elinks-debuginfo-0.11.1-8.el5_9.i386.rpm x86_64: elinks-0.11.1-8.el5_9.x86_64.rpm elinks-debuginfo-0.11.1-8.el5_9.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: elinks-0.11.1-8.el5_9.i386.rpm elinks-debuginfo-0.11.1-8.el5_9.i386.rpm ia64: elinks-0.11.1-8.el5_9.ia64.rpm elinks-debuginfo-0.11.1-8.el5_9.ia64.rpm ppc: elinks-0.11.1-8.el5_9.ppc.rpm elinks-debuginfo-0.11.1-8.el5_9.ppc.rpm s390x: elinks-0.11.1-8.el5_9.s390x.rpm elinks-debuginfo-0.11.1-8.el5_9.s390x.rpm x86_64: elinks-0.11.1-8.el5_9.x86_64.rpm elinks-debuginfo-0.11.1-8.el5_9.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm ppc64: elinks-0.12-0.21.pre5.el6_3.ppc64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.ppc64.rpm s390x: elinks-0.12-0.21.pre5.el6_3.s390x.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.s390x.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: i386: elinks-0.12-0.21.pre5.el6_3.i686.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.i686.rpm x86_64: elinks-0.12-0.21.pre5.el6_3.x86_64.rpm elinks-debuginfo-0.12-0.21.pre5.el6_3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2012-4545 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2013 Red Hat, Inc. . Address a critical elinks vulnerability via the newest Red Hat release. Ensure safety by implementing essential upgrade procedures.. Red Hat Enterprise, elinks security, client credential attack, server impersonation. . LinuxSecurity.com Team

Feb 11, 2013 Red Hat

security advisorydebianremote

Debian: DSA-2592-1 Critical Elinks Remote Credential Delegation Issue

Marko Myllynen discovered that elinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate. For the stable distribution (squeeze), this problem has been fixed in . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2592-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : elinks Vulnerability : programming error Problem type : remote Debian-specific: no CVE ID : CVE-2012-4545 Marko Myllynen discovered that elinks, a powerful text-mode browser, incorrectly delegates user credentials during GSS-Negotiate. For the stable distribution (squeeze), this problem has been fixed in version 0.12~pre5-2+squeeze1. Since the initial Squeeze release Xulrunner needed to be updated and the version currently in the archive is incompatible with Elinks. As such, Javascript support needed to be disabled (only a small subset of typical functionality was supported anyway). It will likely be re-enabled in a later point update For the testing distribution (wheezy), this problem has been fixed in version 0.12~pre5-9. For the unstable distribution (sid), this problem has been fixed in version 0.12~pre5-9. We recommend that you upgrade your elinks packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The Debian Security Notice DSA-2592-2 pertains to a vulnerability in elinks that allows remote exploitation through faulty authentication delegation.. Debian Security, elinks Update, Remote Issue, User Credentials, Text-mode Browser. . Severity: Critical. LinuxSecurity.comTeam

Dec 28, 2012 •Critical Debian

security advisorybuffer overflowcritical

Debian: DSA-1902-1 Critical: ELinks Buffer Overflow Risk

Jakub Wilk discovered an off-by-one buffer overflow in the charset handling of elinks, a feature-rich text-mode WWW browser, which might lead to the execution of arbitrary code if the user is tricked into opening a malformed HTML page. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1902-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff October 05, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : elinks Vulnerability : buffer overflow Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2008-7224 Debian Bug : 380347 Jakub Wilk discovered an off-by-one buffer overflow in the charset handling of elinks, a feature-rich text-mode WWW browser, which might lead to the execution of arbitrary code if the user is tricked into opening a malformed HTML page. For the old stable distribution (etch), this problem has been fixed in version 0.11.1-1.2etch2. The stable distribution (lenny) and the unstable distribution (sid) already contain a patch for this problem. We recommend that you upgrade your elinks package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - ------------------------------- Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 30564 48727476dbfed45200797a0504fa6e4a Size/MD5 checksum: 3863617 dce0fa7cb2b6e7194ddd00e34825218b Size/MD5 checksum: 872 870acbbc16c166c0e17669f435cf4478 alpha architecture (DEC Alpha) Size/MD5 checksum: 496748 65a9e90caf0005912d0f307447bb7252 Size/MD5 checksum: 1264746 750b9c9425d331afdd84ae9e8ec397cc amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 457658 d35d0729240a9a3e4edf596fab8b5519 Size/MD5 checksum: 1219062 eeb677af4bd1f969062dcc49a6c5797f arm architecture (ARM) Size/MD5 checksum: 1179258 2236eef0018c35106157254f1a9b5371 Size/MD5 checksum: 417026 d6298439e61cfd390dc5f885fa6d3ce9 hppa architecture (HP PA RISC) Size/MD5 checksum: 1249718 200ea460bf1c50c7c77fb818b99d6f93 Size/MD5 checksum: 481296 4d1ffd49415dc0f727fec71843e0cf1e i386 architecture (Intel ia32) Size/MD5 checksum: 423782 fd2bdd5f8d85049dd34e9d392cfb0d55 Size/MD5 checksum: 1188386 6b5bd5cc0801cc98c5f89eb755036a58 ia64 architecture (Intel ia64) Size/MD5 checksum: 1432996 3f1c8fd354685e153aa0bf6001811f72 Size/MD5 checksum: 624264 6ab1d3d6329c2fbbd366c7979846be04 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 1223924 88dab6a6625382e7d7531f9f45f2fb6d Size/MD5 checksum: 466916 3f54531dc562935768748e8626c3cd8a powerpc architecture (PowerPC) Size/MD5 checksum: 450082 4cb3cbeda69cd02ddc99b132d26998c5 Size/MD5 checksum: 1216856 ed85e75381a7bfdd094e21e0e16ecbfd s390 architecture (IBM S/390) Size/MD5 checksum: 1232366 5eafbb1dcf688fe54bd347afab8d6da8 Size/MD5 checksum: 470580 9da53a0cc795e3943c250a44810f006d sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 419686 6177d561615f0c17f9e46e3642899870 Size/MD5 checksum: 1186370 1f7db95ad501df7b756e3ccaf2dc754d These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . The Debian Security Advisory DSA-1902-1 highlights a critical off-by-one buffer overflow vulnerability found in the elinks web browser, potentially allowing for arbitrary code execution.. Debian Advisory, ELinks Security, Buffer Overflow, Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team

Oct 05, 2009 •Critical Debian

security advisorybuffer overflowimportant update

Scientific Linux SL4.x/SL5.x Important: elinks Security Fixes

Important: elinks security update. Date: Fri, 2 Oct 2009 14:27:07 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA Important: elinks on SL4.x, SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Important: elinks security update Issue date: 2009-10-01 CVE Names: CVE-2007-2027 CVE-2008-7224 CVE-2007-2027 elinks tries to load .po files from a non-absolute path CVE-2008-7224 elinks: entity_cache static array buffer overflow (off-by-one) An off-by-one buffer overflow flaw was discovered in the way ELinks handled its internal cache of string representations for HTML special entities. A remote attacker could use this flaw to create a specially-crafted HTML file that would cause ELinks to crash or, possibly, execute arbitrary code when rendered. (CVE-2008-7224) It was discovered that ELinks tried to load translation files using relative paths. A local attacker able to trick a victim into running ELinks in a folder containing specially-crafted translation files could use this flaw to confuse the victim via incorrect translations, or cause ELinks to crash and possibly execute arbitrary code via embedded formatting sequences in translated messages. (CVE-2007-2027) SL 4.x SRPMS: elinks-0.9.2-4.el4_8.1.src.rpm i386: elinks-0.9.2-4.el4_8.1.i386.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm SL 5.x SRPMS: elinks-0.11.1-6.el5_4.1.src.rpm i386: elinks-0.11.1-6.el5_4.1.i386.rpm x86_64: elinks-0.11.1-6.el5_4.1.x86_64.rpm -Connie Sieh -Troy Dawson . This bulletin outlines significant elinks security revisions for SL4.x and SL5.x that tackle severe vulnerabilities to ensure user protection.. elinks security update, Scientific Linux advisory, buffer overflow fix, important security update, Linux vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Oct 02, 2009 •Important Scientific Linux

security advisorybuffer overflowred hat

Red Hat RHSA-2009-1471-01 Critical: ELinks Buffer Overflow Details

An updated elinks package that fixes two security issues is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: elinks security update Advisory ID: RHSA-2009:1471-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:1471.html Issue date: 2009-10-01 CVE Names: CVE-2007-2027 CVE-2008-7224 ==================================================================== 1. Summary: An updated elinks package that fixes two security issues is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 3. Description: ELinks is a text-based Web browser. ELinks does not display any images, but it does support frames, tables, and most other HTML tags. An off-by-one buffer overflow flaw was discovered in the way ELinks handled its internal cache of string representations for HTML special entities. A remote attacker could use this flaw to create a specially-crafted HTML file that would cause ELinks to crash or, possibly, execute arbitrary code when rendered. (CVE-2008-7224) It was discovered that ELinks tried to load translation files using relative paths. A local attacker able to trick a victim into running ELinks in a folder containingspecially-crafted translation files could use this flaw to confuse the victim via incorrect translations, or cause ELinks to crash and possibly execute arbitrary code via embedded formatting sequences in translated messages. (CVE-2007-2027) All ELinks users are advised to upgrade to this updated package, which contains backported patches to resolve these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 235411 - CVE-2007-2027 elinks tries to load .po files from a non-absolute path 523258 - CVE-2008-7224 elinks: entity_cache static array buffer overflow (off-by-one) 6. Package List: Red Hat Enterprise Linux AS version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm ppc: elinks-0.9.2-4.el4_8.1.ppc.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ppc.rpm s390: elinks-0.9.2-4.el4_8.1.s390.rpm elinks-debuginfo-0.9.2-4.el4_8.1.s390.rpm s390x: elinks-0.9.2-4.el4_8.1.s390x.rpm elinks-debuginfo-0.9.2-4.el4_8.1.s390x.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: elinks-0.11.1-6.el5_4.1.i386.rpm elinks-debuginfo-0.11.1-6.el5_4.1.i386.rpm x86_64: elinks-0.11.1-6.el5_4.1.x86_64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: elinks-0.11.1-6.el5_4.1.i386.rpm elinks-debuginfo-0.11.1-6.el5_4.1.i386.rpm ia64: elinks-0.11.1-6.el5_4.1.ia64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.ia64.rpm ppc: elinks-0.11.1-6.el5_4.1.ppc.rpm elinks-debuginfo-0.11.1-6.el5_4.1.ppc.rpm s390x: elinks-0.11.1-6.el5_4.1.s390x.rpm elinks-debuginfo-0.11.1-6.el5_4.1.s390x.rpm x86_64: elinks-0.11.1-6.el5_4.1.x86_64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2007-2027 https://www.cve.org/CVERecord?id=CVE-2008-7224 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2009 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFKxOkdXlSAg2UNWIIRAtXHAKCVF6l/7CYcxnaLegsmKwe9LcbqVwCfcwiE NPI04ky31xt1Pei00zutNls=220E -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial elinks enhancement for Red Hat resolved security vulnerabilities following advisory RHSA-2009-1471 that tackled buffer overflow concerns.. elinks update, Red Hat security, buffer overflow fix. . Severity: Important. LinuxSecurity.com Team

Oct 01, 2009 •Important Red Hat

security advisoryRed Hatbuffer overflow

Red Hat RHSA-2009:1471-01 Important: ELinks Buffer Overflow Risk

An updated elinks package that fixes two security issues is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team.. ==================================================================== Red Hat Security Advisory Synopsis: Important: elinks security update Advisory ID: RHSA-2009:1471-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:1471.html Issue date: 2009-10-01 CVE Names: CVE-2007-2027 CVE-2008-7224 ==================================================================== 1. Summary: An updated elinks package that fixes two security issues is now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 3. Description: ELinks is a text-based Web browser. ELinks does not display any images, but it does support frames, tables, and most other HTML tags. An off-by-one buffer overflow flaw was discovered in the way ELinks handled its internal cache of string representations for HTML special entities. A remote attacker could use this flaw to create a specially-crafted HTML file that would cause ELinks to crash or, possibly, execute arbitrary code when rendered. (CVE-2008-7224) It was discovered that ELinks tried to load translation files using relative paths. A local attacker able to trick a victim into running ELinks in a folder containing specially-crafted translation files could use this flaw toconfuse the victim via incorrect translations, or cause ELinks to crash and possibly execute arbitrary code via embedded formatting sequences in translated messages. (CVE-2007-2027) All ELinks users are advised to upgrade to this updated package, which contains backported patches to resolve these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 235411 - CVE-2007-2027 elinks tries to load .po files from a non-absolute path 523258 - CVE-2008-7224 elinks: entity_cache static array buffer overflow (off-by-one) 6. Package List: Red Hat Enterprise Linux AS version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm ppc: elinks-0.9.2-4.el4_8.1.ppc.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ppc.rpm s390: elinks-0.9.2-4.el4_8.1.s390.rpm elinks-debuginfo-0.9.2-4.el4_8.1.s390.rpm s390x: elinks-0.9.2-4.el4_8.1.s390x.rpm elinks-debuginfo-0.9.2-4.el4_8.1.s390x.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: elinks-0.9.2-4.el4_8.1.i386.rpm elinks-debuginfo-0.9.2-4.el4_8.1.i386.rpm ia64: elinks-0.9.2-4.el4_8.1.ia64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.ia64.rpm x86_64: elinks-0.9.2-4.el4_8.1.x86_64.rpm elinks-debuginfo-0.9.2-4.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: elinks-0.11.1-6.el5_4.1.i386.rpm elinks-debuginfo-0.11.1-6.el5_4.1.i386.rpm x86_64: elinks-0.11.1-6.el5_4.1.x86_64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: elinks-0.11.1-6.el5_4.1.i386.rpm elinks-debuginfo-0.11.1-6.el5_4.1.i386.rpm ia64: elinks-0.11.1-6.el5_4.1.ia64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.ia64.rpm ppc: elinks-0.11.1-6.el5_4.1.ppc.rpm elinks-debuginfo-0.11.1-6.el5_4.1.ppc.rpm s390x: elinks-0.11.1-6.el5_4.1.s390x.rpm elinks-debuginfo-0.11.1-6.el5_4.1.s390x.rpm x86_64: elinks-0.11.1-6.el5_4.1.x86_64.rpm elinks-debuginfo-0.11.1-6.el5_4.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2007-2027 https://www.cve.org/CVERecord?id=CVE-2008-7224 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2009 Red Hat, Inc. . Crucial patch released for Debian's lynx software addresses two significant vulnerabilities, reducing the risk of severe memory access issues.. RedHat, elinks, security update, important patch, code execution risk. . Severity: Important. LinuxSecurity.com Team

Oct 01, 2009 •Important Red Hat

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Red Hat: RHSA-2013-0250-01 Moderate: ELinks Client Credentials Issue

Scientific Linux: Moderate Elinks Security Update CVE-2012-4545

Red Hat Enterprise Linux: RHSA-2013:0250-01 Moderate: ELinks Security Issue

Debian: DSA-2592-1 Critical Elinks Remote Credential Delegation Issue

Debian: DSA-1902-1 Critical: ELinks Buffer Overflow Risk

Scientific Linux SL4.x/SL5.x Important: elinks Security Fixes

Red Hat RHSA-2009-1471-01 Critical: ELinks Buffer Overflow Details

Red Hat RHSA-2009:1471-01 Important: ELinks Buffer Overflow Risk

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!