CVE-2016-9179

Опубликовано: 22 дек. 2016

Источник: ubuntu

Приоритет: low

CVSS2: 5

CVSS3: 7.5

Описание

lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.8.9dev11-1
cosmic	not-affected	2.8.9dev11-1
devel	not-affected	2.8.9dev11-1
disco	not-affected	2.8.9dev11-1
eoan	not-affected	2.8.9dev11-1
esm-apps/bionic	not-affected	2.8.9dev11-1
esm-apps/focal	not-affected	2.8.9dev11-1
esm-apps/jammy	not-affected	2.8.9dev11-1
esm-apps/xenial	released	2.8.9dev8-4ubuntu1+esm1

Показывать по

Релиз	Статус	Примечание
artful	DNE
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
eoan	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
esm-infra/focal	DNE
focal	DNE
groovy	DNE

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2016-9179

CVSS3: 5.4

redhat

больше 9 лет назад

lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.

CVE-2016-9179

CVSS3: 7.5

nvd

около 9 лет назад

lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host.

CVE-2016-9179

CVSS3: 7.5

msrc

5 месяцев назад

It was found that Lynx doesn't parse the authority component of the URL correctly

CVE-2016-9179

CVSS3: 7.5

debian

около 9 лет назад

lynx: It was found that Lynx doesn't parse the authority component of ...

openSUSE-SU-2017:0668-1

suse-cvrf

почти 9 лет назад

Security update for lynx

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2016-9179

Описание

Пакет lynx

Пакет lynx-cur

Ссылки на источники

Связанные уязвимости