Ubuntu
wget package

Branches for Karmic

Name Status Last Modified Last Commit
lp:ubuntu/karmic-security/wget 2 Mature 2010-09-02 13:20:53 UTC
14. * SECURITY UPDATE: arbitrary file ove...

Author: Marc Deslauriers
Revision Date: 2010-09-01 10:32:54 UTC

* SECURITY UPDATE: arbitrary file overwrite via 3xx redirect
  - debian/patches/CVE-2010-2252.dpatch: don't use server names in
    doc/wget.texi, src/{http.*,init.c,main.c,options.h,retr.c}.
  - This update changes previous behaviour by ignoring the filename
    supplied by the server during redirects. To re-enable previous
    behaviour, see the new --trust-server-names option.
  - CVE-2010-2252
lp:ubuntu/karmic-updates/wget 2 Mature 2010-09-02 14:06:38 UTC
14. * SECURITY UPDATE: arbitrary file ove...

Author: Marc Deslauriers
Revision Date: 2010-09-01 10:32:54 UTC

* SECURITY UPDATE: arbitrary file overwrite via 3xx redirect
  - debian/patches/CVE-2010-2252.dpatch: don't use server names in
    doc/wget.texi, src/{http.*,init.c,main.c,options.h,retr.c}.
  - This update changes previous behaviour by ignoring the filename
    supplied by the server during redirects. To re-enable previous
    behaviour, see the new --trust-server-names option.
  - CVE-2010-2252
lp:ubuntu/karmic/wget bug 1 Development 2009-10-05 14:32:57 UTC
13. * SECURITY UPDATE: SSL certificate by...

Author: Marc Deslauriers
Revision Date: 2009-10-05 14:32:57 UTC

* SECURITY UPDATE: SSL certificate bypass with NULL CN byte.
  - debian/patches/security-CVE-2009-3490.dpatch: make sure there is no
    NULL in the common-name in src/openssl.c.
  - CVE-2009-3490
13 of 3 results FirstPreviousNextLast