The ht://Dig system is a Web search and indexing system for a small domain
or intranet.
Michael Krax reported a cross-site scripting bug affecting htdig. An
attacker could construct a carefully crafted URL which can cause a web
browser to execute malicious script once visited. The Common
Vulnerabilities and Exposures project has assigned the name CAN-2005-0085
to this issue.
Users of htdig should upgrade to these updated packages, which contain a
backported patch, and are not vulnerable to this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | s390 | htdig | < 3.2.0b6-3.40.1 | htdig-3.2.0b6-3.40.1.s390.rpm |
RedHat | any | src | htdig | < 3.2.0b6-3.40.1 | htdig-3.2.0b6-3.40.1.src.rpm |
RedHat | any | x86_64 | htdig | < 3.2.0b6-3.40.1 | htdig-3.2.0b6-3.40.1.x86_64.rpm |
RedHat | any | i386 | htdig-web | < 3.2.0b6-3.40.1 | htdig-web-3.2.0b6-3.40.1.i386.rpm |
RedHat | any | ppc | htdig | < 3.2.0b6-3.40.1 | htdig-3.2.0b6-3.40.1.ppc.rpm |
RedHat | any | ia64 | htdig-web | < 3.2.0b6-3.40.1 | htdig-web-3.2.0b6-3.40.1.ia64.rpm |
RedHat | any | s390x | htdig | < 3.2.0b6-3.40.1 | htdig-3.2.0b6-3.40.1.s390x.rpm |
RedHat | any | ppc | htdig-web | < 3.2.0b6-3.40.1 | htdig-web-3.2.0b6-3.40.1.ppc.rpm |
RedHat | any | x86_64 | htdig-web | < 3.2.0b6-3.40.1 | htdig-web-3.2.0b6-3.40.1.x86_64.rpm |
RedHat | any | s390x | htdig-web | < 3.2.0b6-3.40.1 | htdig-web-3.2.0b6-3.40.1.s390x.rpm |