Mailing List Info
Slackware Logo

News

Security Advisories

FAQ

Book

General Info

Get Slack

Install Help

Configuration

Packages

ChangeLogs

Propaganda

Ports

Other Sites

Support

Contact

Mailing Lists
  Archives

About

 
From: Slackware Security Team <security@slackware.com>
To: slackware-security@slackware.com
Subject: Updated Lynx package for Slackware 7.0 & -current
Date: Fri, 19 May 2000 14:05:03 -0700 (PDT)
A new Lynx package is available in the Slackware-current tree.  Users of
Slackware 7.0 and -current are urged to upgrade to this version.  Versions
of Lynx prior to 2.8.3pre.5 contained numerous security holes which could
permit a malicious server to execute arbitrary code on the user's system.
This version was heavily audited by the Lynx team before release.


   ========================================
   lynx 2.8.3rel1 AVAILABLE - (n1/lynx.tgz)
   ========================================

      Major security holes removed, better string handling code.  Slackware
      7.0 and -current users should download the following updated package
      from ftp.slackware.com.

         /pub/slackware/slackware-current/slakware/n1/lynx.tgz

      Here are the md5sums and checksums for the new package:

         4a23e8896366bb952a3bf4be1f6e4d7d  n1/lynx.tgz
         4062658962 788916 n1/lynx.tgz


Separate patches will not be produced for the /patches directory in the
Slackware 7.0 distribution tree.  Users of Slackware 7.0 can download the
necessary packages from the Slackware-current tree and run upgradepkg to
install them.

It's generally a good idea to bring your system into runlevel 1 when doing
package upgrades, just to minimize error.

   # telinit 1
   # upgradepkg <packagename>
   # telinit 3

Remember, it's also a good idea to backup configuration files before upgrading
packages.

- The Slackware Linux Project
  http://www.slackware.com


Slackware® is a registered trademark of Slackware Linux, Inc. All logos and graphics are copyrighted.