[SECURITY] Fedora 20 Update: wget-1.16-3.fc20

updates at fedoraproject.org updates at fedoraproject.org
Sat Nov 22 12:34:29 UTC 2014


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-15385
2014-11-19 15:12:27
--------------------------------------------------------------------------------

Name        : wget
Product     : Fedora 20
Version     : 1.16
Release     : 3.fc20
URL         : http://www.gnu.org/software/wget/
Summary     : A utility for retrieving files using the HTTP or FTP protocols
Description :
GNU Wget is a file retrieval utility which can use either the HTTP or
FTP protocols. Wget features include the ability to work in the
background while you are logged out, recursive retrieval of
directories, file name wildcard matching, remote file timestamp
storage and comparison, use of Rest with FTP servers and Range with
HTTP servers to retrieve files over slow or unstable connections,
support for Proxy servers, and configurability.

--------------------------------------------------------------------------------
Update Information:

- add fix for arches with unsigned char
- security update
- Fix the progress bar issue (#1159643)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 18 2014 Tomas Hozza <thozza at redhat.com> - 1.16-3
- Fix the progress bar issue (#1159643)
* Mon Nov  3 2014 Jakub ńĆajka <jcajka at redhat.com> - 1.16-2
- fix failing tests idn-cmd-utf8 and idn-robots-utf8
- re-enabled tests
* Fri Oct 31 2014 Tomas Hozza <thozza at redhat.com> - 1.16-1
- update to 1.16
- fixes CVE-2014-4877
* Wed Mar  5 2014 Tomas Hozza <thozza at redhat.com> - 1.14-12
- Bump release
* Mon Oct 21 2013 Tomas Hozza <thozza at redhat.com> - 1.14-11
- run test suite during the build
* Thu Oct 10 2013 Tomas Hozza <thozza at redhat.com> - 1.14-10
- remove excessive line for '-nv' option in the manpage (#1017106)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1139181 - CVE-2014-4877 wget: FTP symlink arbitrary filesystem access
        https://bugzilla.redhat.com/show_bug.cgi?id=1139181
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update wget' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list