Login
Newsletter
Werbung

Sicherheit: Überschreiben von Dateien in wget
Aktuelle Meldungen Distributionen
Name: Überschreiben von Dateien in wget
ID: FEDORA-2014-15347
Distribution: Fedora
Plattformen: Fedora 21
Datum: Sa, 6. Dezember 2014, 15:45
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4877
Applikationen: Wget

Originalnachricht

Name        : wget
Product : Fedora 21
Version : 1.16
Release : 3.fc21
URL : http://www.gnu.org/software/wget/
Summary : A utility for retrieving files using the HTTP or FTP protocols
Description :
GNU Wget is a file retrieval utility which can use either the HTTP or
FTP protocols. Wget features include the ability to work in the
background while you are logged out, recursive retrieval of
directories, file name wildcard matching, remote file timestamp
storage and comparison, use of Rest with FTP servers and Range with
HTTP servers to retrieve files over slow or unstable connections,
support for Proxy servers, and configurability.

-------------------------------------------------------------------------------
-
Update Information:

add fix for arches with unsigned char
security update
Fix the progress bar issue (#1159643)
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Nov 18 2014 Tomas Hozza <thozza@redhat.com> - 1.16-3
- Fix the progress bar issue (#1159643)
* Mon Nov 3 2014 Jakub Čajka <jcajka@redhat.com> - 1.16-2
- fix failing tests idn-cmd-utf8 and idn-robots-utf8
- re-enabled tests
* Fri Oct 31 2014 Tomas Hozza <thozza@redhat.com> - 1.16-1
- update to 1.16
- fixes CVE-2014-4877
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1139181 - CVE-2014-4877 wget: FTP symlink arbitrary filesystem
access
https://bugzilla.redhat.com/show_bug.cgi?id=1139181
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update wget' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung