Debian Lynx vulnerabilities

9 known vulnerabilities affecting debian/lynx.

Total CVEs
9
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM3LOW4

Vulnerabilities

Page 1 of 1
CVE-2021-38165MEDIUMCVSS 5.3fixed in lynx 2.9.0dev.6-3 (bookworm)2021
CVE-2021-38165 [MEDIUM] CVE-2021-38165: lynx - Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows r... Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because they may appear in SNI data. Scope: local bookworm: resolved (fixed in 2.9.0dev.6-3) bullseye: resolved (fixed in 2.9.0dev.6-3~deb11u1) forky: resolved (fixed in 2.9.0dev.6-3) sid: resolved (fixed in 2.9.0dev.6-3) trixie: resolved
debian
CVE-2017-1000211MEDIUMCVSS 5.3fixed in lynx 2.8.9dev16-1 (bookworm)2017
CVE-2017-1000211 [MEDIUM] CVE-2017-1000211: lynx - Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser res... Lynx before 2.8.9dev.16 is vulnerable to a use after free in the HTML parser resulting in memory disclosure, because HTML_put_string() can append a chunk onto itself. Scope: local bookworm: resolved (fixed in 2.8.9dev16-1) bullseye: resolved (fixed in 2.8.9dev16-1) forky: resolved (fixed in 2.8.9dev16-1) sid: resolved (fixed in 2.8.9dev16-1) trixie: resolved (fix
debian
CVE-2016-9179HIGHCVSS 7.5fixed in lynx 2.8.9dev11-1 (bookworm)2016
CVE-2016-9179 [HIGH] CVE-2016-9179: lynx - lynx: It was found that Lynx doesn't parse the authority component of the URL co... lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host. Scope: local bookworm: resolved (fixed in 2.8.9dev11-1) bullseye: resolved (fixed in 2.8.9dev11-1) forky: resolved (fixed in 2.8.9dev11-1) sid: resolved (fixed in 2.8.9dev11-1) tri
debian
CVE-2008-4690LOWCVSS 7.52008
CVE-2008-4690 [HIGH] CVE-2008-4690: lynx - lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configur... lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx is configured as a URL handler, allows remote attackers to execute arbitrary commands via a crafted lynxcgi: URL, a related issue to CVE-2005-2929. NOTE: this might only be a vulnerability in limited deployments that have defined a lynxcgi: handler. Scope: local bookworm: resolved bullseye: resolved for
debian
CVE-2006-7234LOWCVSS 4.6PoC2006
CVE-2006-7234 [MEDIUM] CVE-2006-7234: lynx - Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users... Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows local users to execute arbitrary code via malicious (1) .mailcap and (2) mime.types files in the current working directory. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian
CVE-2005-3120HIGHCVSS 9.8PoCfixed in lynx 2.8.5-2sarge1 (bookworm)2005
CVE-2005-3120 [CRITICAL] CVE-2005-3120: lynx - Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier all... Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters. Scope: local bookworm: resolved (fixed in 2.8.5-2sarge1) bullseye: resolved (fixed in 2.8.5-2sarge1) forky: resolved (fixed in 2.
debian
CVE-2005-2929LOWCVSS 7.52005
CVE-2005-2929 [HIGH] CVE-2005-2929: lynx - Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to ex... Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in the default configuration in some environments. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved
debian
CVE-2004-1617LOWCVSS 5.0fixed in lynx 2.8.5-2sarge1.2 (bookworm)2004
CVE-2004-1617 [MEDIUM] CVE-2004-1617: lynx - Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a... Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is not terminated, as demonstrated by mangleme. NOTE: a followup suggests that the relevant trigger for
debian
CVE-2002-1405MEDIUMCVSS 5.0PoCfixed in lynx 2.8.4.1b-4 (bookworm)2002
CVE-2002-1405 [MEDIUM] CVE-2002-1405: lynx - CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers t... CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded carriage return, line feed, and other whitespace characters. Scope: local bookworm: resolved (fixed in 2.8.4.1b-4) bullseye: resolved (fixed in 2.8.4.1b-4) forky: resolved (fi
debian