www-client/links-2.19 was released on 2019-04-04. www-client/links-2.20 was released on 2019-08-28. www-client/links-2.20.1 was released on 2019-09-04. ChangeLog: http://links.twibright.com/download/ChangeLog One of entries for release 2.20: """ Mon Aug 26 18:21:43 CEST 2019 mikulas: Security bug fixed: when links was connected to tor, it would send real dns requests outside the tor network when the displayed page contains <link rel="dns-prefetch" href="http://host.domain/">. This bug is present in links-2.15 to links-2.19. Found by Shi Tian <shitian@cock.li> """
@ maintainer(s): Please bump to >=2.20!
*** Bug 705328 has been marked as a duplicate of this bug. ***
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c7a3f6c8c3ef3cd7063a02908dbe96faf89612d3 commit c7a3f6c8c3ef3cd7063a02908dbe96faf89612d3 Author: Ben Kohler <bkohler@gentoo.org> AuthorDate: 2020-02-17 19:23:02 +0000 Commit: Ben Kohler <bkohler@gentoo.org> CommitDate: 2020-02-17 19:23:50 +0000 www-client/links: bump to 2.20.2 Add a few new flags for optional deps Closes: https://bugs.gentoo.org/657996 Bug: https://bugs.gentoo.org/694016 Package-Manager: Portage-2.3.89, Repoman-2.3.20 Signed-off-by: Ben Kohler <bkohler@gentoo.org> www-client/links/Manifest | 1 + www-client/links/links-2.20.2.ebuild | 170 +++++++++++++++++++++++++++++++++++ www-client/links/metadata.xml | 7 ++ 3 files changed, 178 insertions(+)
@maintainer(s), please advise if ready for stabilisation, or call for it yourself
s390 stable
sparc stable
amd64 stable
ppc64 stable
ppc stable
x86 stable
arm64 stable
ia64 stable
hppa stable
arm stable. Maintainer(s), please cleanup. Security, please vote.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=998fa01bec870ac488e278245481542d9375a94d commit 998fa01bec870ac488e278245481542d9375a94d Author: Patrice Clement <monsieurp@gentoo.org> AuthorDate: 2020-03-25 09:11:42 +0000 Commit: Patrice Clement <monsieurp@gentoo.org> CommitDate: 2020-03-25 09:12:56 +0000 www-client/links: clean up vulnerable versions. Bug: https://bugs.gentoo.org/694016 Package-Manager: Portage-2.3.89, Repoman-2.3.20 Signed-off-by: Patrice Clement <monsieurp@gentoo.org> www-client/links/Manifest | 4 - www-client/links/links-2.14-r1.ebuild | 152 ---------------------------------- www-client/links/links-2.16.ebuild | 152 ---------------------------------- www-client/links/links-2.17.ebuild | 152 ---------------------------------- www-client/links/links-2.18.ebuild | 152 ---------------------------------- 5 files changed, 612 deletions(-)
(In reply to Agostino Sarubbo from comment #14) > Maintainer(s), please cleanup. Done.
GLSA Vote: No Repository is clean, all done!