wget-1.14-13.el7
エラータID: AXSA:2016-1111:01
Release date:
Tuesday, November 29, 2016 - 08:23
Subject:
wget-1.14-13.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
GNU Wget is a file retrieval utility which can use either the HTTP or
FTP protocols. Wget features include the ability to work in the
background while you are logged out, recursive retrieval of
directories, file name wildcard matching, remote file timestamp
storage and comparison, use of Rest with FTP servers and Range with
HTTP servers to retrieve files over slow or unstable connections,
support for Proxy servers, and configurability.
Security issues fixed with this release:
CVE-2016-4971
GNU wget before 1.18 allows remote servers to write to arbitrary files
by redirecting a request from HTTP to a crafted FTP resource.
Additional Changes:
Solution:
Update packages.
CVEs:
CVE-2016-4971
GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
Additional Info:
N/A
Download:
SRPMS
- wget-1.14-13.el7.src.rpm
MD5: 4f97197b635d63d4c7f8e37ac4b82f9d
SHA-256: cf68be9003875019bc815cfa80113f2976ac13b3e06eefb87d4f304145954e63
Size: 1.55 MB
Asianux Server 7 for x86_64
- wget-1.14-13.el7.x86_64.rpm
MD5: ec55ad57ef062708614c49ebf3aa3247
SHA-256: 26c7ce668fee9a0cf4f18e2f801b91bb1f836f7c7e28388b824e941db4ddcd75
Size: 545.39 kB
日本語