LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis:          Moderate: elinks security update
CVE Names:         CVE-2007-5034

Details:

An information disclosure flaw was found in the way ELinks passes https
POST data to a proxy server. POST data sent via a proxy to an https site is
not properly encrypted by ELinks, possibly allowing the disclosure of
sensitive information. (CVE-2007-5034)

SL4.x
   SRPMS:
 	elinks-0.9.2-3.3.5.2.src.rpm

   i386:
 	elinks-0.9.2-3.3.5.2.i386.rpm

   x86_64:
 	elinks-0.9.2-3.3.5.2.x86_64.rpm

SL5.x
   SRPMS:
 	elinks-0.11.1-5.1.0.1.el5.src.rpm

   i386:
 	elinks-0.11.1-5.1.0.1.el5.i386.rpm

   x86_64:
 	elinks-0.11.1-5.1.0.1.el5.x86_64.rpm

-Connie Sieh
-Troy Dawson