Mark lynx FORBIDDEN due to numerous potential and proven

server-exploitable buffer overflows, until the lynx team get their act together and clean up their code. Noticed by: Michal Zalewski <lcamtuf@DIONE.IDS.PL> (Bugtraq) Reviewed by: the rest of the security-officer team.
svn path=/head/; revision=26552
2000-03-05 05:04:48 +00:00 · 2000-03-05 05:04:48 +00:00 · f9b5816b42 · 2021-03-31 03:12:20 +00:00
commit f9b5816b42
parent 4c40d773a4
2 changed files with 6 additions and 2 deletions
--- a/www/lynx-current/Makefile
+++ b/www/lynx-current/Makefile
@ -6,13 +6,15 @@
 # $FreeBSD$
 #

-DISTNAME=       lynx2.8.3dev.18
-PKGNAME=        lynx-2.8.3dev.18
+DISTNAME=       lynx2.8.3dev.20
+PKGNAME=        lynx-2.8.3dev.20
 CATEGORIES=	www
 MASTER_SITES=   http://sol.slcc.edu/lynx/current/

 MAINTAINER=	ache@FreeBSD.org

+FORBIDDEN=	"Riddled with buffer overflows exploitable by a malicious server to execute code as the local user."
+
 USE_BZIP2=      YES
 NO_LATEST_LINK=	YES
 WRKSRC=         ${WRKDIR}/lynx2-8-3
--- a/www/lynx/Makefile
+++ b/www/lynx/Makefile
@ -13,6 +13,8 @@ MASTER_SITES=   http://sol.slcc.edu/lynx/current/

 MAINTAINER=	jseger@FreeBSD.org

+FORBIDDEN=	"Riddled with buffer overflows exploitable by a malicious server to execute code as the local user."
+
 USE_BZIP2=      YES
 WRKSRC=         ${WRKDIR}/lynx2-8-2
 GNU_CONFIGURE=  YES