Package: links Version: 0.99+1.00pre12-1 Severity: normal Tags: security The following web page causes links to hang. I let it sit for about 10 minutes. It's also eating memory during this time.
http://lcamtuf.coredump.cx/mangleme/gallery/links_die1.html This is CAN-2004-1616: Links allows remote attackers to cause a denial of service (memory consumption) via a web page or HTML email that contains a table with a td element and a large rowspan value,as demonstrated by mangleme. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.4.27-2-686-smp Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Versions of packages links depends on: ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libgpmg1 1.19.6-19 General Purpose Mouse - shared lib -- no debconf information -- see shy jo
