Login
Newsletter
Werbung
Sicherheit: Mangelnde Prüfung von Zertifikaten in wget
Aktuelle Meldungen Distributionen
Name: Mangelnde Prüfung von Zertifikaten in wget
ID: MDVSA-2009:206
Distribution: Mandriva
Plattformen: Mandriva Corporate 4.0, Mandriva 2008.1, Mandriva 2009.0, Mandriva 2009.1, Mandriva Enterprise Server 5.0
Datum: Mi, 19. August 2009, 01:30
Referenzen: Keine Angabe
Applikationen: Wget

Originalnachricht

 
This is a multi-part message in MIME format...

------------=_1250638230-13155-1008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2009:206
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : wget
 Date    : August 18, 2009
 Affected: 2008.1, 2009.0, 2009.1, Corporate 4.0, Enterprise Server 5.0
 _______________________________________________________________________

 Problem Description:

 A vulnerability has been found and corrected in wget:
 
 SUSE discovered a security issue in wget related to
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2408
 
 This update provides a solution to this vulnerability.
 _______________________________________________________________________

 Updated Packages:

 Mandriva Linux 2008.1:
 ea12db02d04adc9fa0b29e7236bc0aff  2008.1/i586/wget-1.11-1.1mdv2008.1.i586.rpm 
 4bb0f6cea935f1898b16138a9184532d  2008.1/SRPMS/wget-1.11-1.1mdv2008.1.src.rpm

 Mandriva Linux 2008.1/X86_64:
 b5d0178dafabf50dd69b65640794b343 
 2008.1/x86_64/wget-1.11-1.1mdv2008.1.x86_64.rpm 
 4bb0f6cea935f1898b16138a9184532d  2008.1/SRPMS/wget-1.11-1.1mdv2008.1.src.rpm

 Mandriva Linux 2009.0:
 bede85ae45fadf868872897da49055c2 
 2009.0/i586/wget-1.11.4-1.1mdv2009.0.i586.rpm 
 6790666e7840374f76f5713042791800 
 2009.0/SRPMS/wget-1.11.4-1.1mdv2009.0.src.rpm

 Mandriva Linux 2009.0/X86_64:
 4c3aa5dc0ff825c091f33a90e6413b18 
 2009.0/x86_64/wget-1.11.4-1.1mdv2009.0.x86_64.rpm 
 6790666e7840374f76f5713042791800 
 2009.0/SRPMS/wget-1.11.4-1.1mdv2009.0.src.rpm

 Mandriva Linux 2009.1:
 22ac17fb90755905810e06ba331aa3f0 
 2009.1/i586/wget-1.11.4-2.1mdv2009.1.i586.rpm 
 e1cb10f372e5f447c66122cb7e21d838 
 2009.1/SRPMS/wget-1.11.4-2.1mdv2009.1.src.rpm

 Mandriva Linux 2009.1/X86_64:
 ed2db26279ff964b66dab3d1c8131b24 
 2009.1/x86_64/wget-1.11.4-2.1mdv2009.1.x86_64.rpm 
 e1cb10f372e5f447c66122cb7e21d838 
 2009.1/SRPMS/wget-1.11.4-2.1mdv2009.1.src.rpm

 Corporate 4.0:
 968c766ddae497261b5771809aadd05c 
 corporate/4.0/i586/wget-1.10-1.3.20060mlcs4.i586.rpm 
 d68c51e4d12cc46284e74bcb3a49d2b3 
 corporate/4.0/SRPMS/wget-1.10-1.3.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 b22218a9f0e8d00eba91282955c8ff13 
 corporate/4.0/x86_64/wget-1.10-1.3.20060mlcs4.x86_64.rpm 
 d68c51e4d12cc46284e74bcb3a49d2b3 
 corporate/4.0/SRPMS/wget-1.10-1.3.20060mlcs4.src.rpm

 Mandriva Enterprise Server 5:
 9f5a3d71664dc57fb26aebbc19c59fcb  mes5/i586/wget-1.11.4-1.1mdvmes5.i586.rpm 
 f3aa17085ae5049ee3a5bf05e3119c43  mes5/SRPMS/wget-1.11.4-1.1mdvmes5.src.rpm

 Mandriva Enterprise Server 5/X86_64:
 3a8dc29a12c1059182edbd8d732bc9df 
 mes5/x86_64/wget-1.11.4-1.1mdvmes5.x86_64.rpm 
 f3aa17085ae5049ee3a5bf05e3119c43  mes5/SRPMS/wget-1.11.4-1.1mdvmes5.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFKiwtSmqjQ0CJFipgRAn13AKCh0YGh/7d6XI+RzW0968xgEIqqLACglzPt
/hPdLqxZ869FtuN+jpKVX/M=
=NfR+
-----END PGP SIGNATURE-----


------------=_1250638230-13155-1008
Content-Type: text/plain; name="message-footer.txt"
Content-Disposition: inline; filename="message-footer.txt"
Content-Transfer-Encoding: 8bit

To unsubscribe, send a email to sympa@mandrivalinux.org
with this subject : unsubscribe security-announce
_______________________________________________________
Want to buy your Pack or Services from Mandriva? 
Go to http://www.mandrivastore.com
Join the Club : http://www.mandrivaclub.com
_______________________________________________________

------------=_1250638230-13155-1008--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung