Re: links2 stable update for CVE-2008-3329
the following CVE (Common Vulnerabilities & Exposures) id was
published for links2 some time ago.
| Unspecified vulnerability in Links before 2.1, when "only proxies" is
| enabled, has unknown impact and attack vectors related to providing
| "URLs to external programs."
Unfortunately the vulnerability described above is not important enough
to get it fixed via regular security update in Debian stable. It does
not warrant a DSA.
However it would be nice if this could get fixed via a regular point update.
Please contact the release team for this.
This is Debian bug #492744.
This is an automatically generated mail, in case you are already working on an
upgrade this is of course pointless.
For further information:
the link mentioned at  is "Not Found"
I would recommend getting the 2.2 release of links2 for lenny from:
the changes are minimal, and the security fix is the same in this release
as in the pre37.