(RHSA-2007:0933) Moderate: elinks security update

2007-10-03T04:00:00
ID RHSA-2007:0933
Type redhat
Reporter RedHat
Modified 2017-09-08T12:19:12

Description

ELinks is a text mode Web browser used from the command line that supports rendering modern web pages.

An information disclosure flaw was found in the way ELinks passes https POST data to a proxy server. POST data sent via a proxy to an https site is not properly encrypted by ELinks, possibly allowing the disclosure of sensitive information. (CVE-2007-5034)

All users of Elinks are advised to upgrade to this updated package, which contains a backported patch that resolves this issue.