wget 1.9.1-4ubuntu0.1 source package in Ubuntu
Changelog
wget (1.9.1-4ubuntu0.1) warty-security; urgency=low
* SECURITY UPDATE: Fix arbitrary file overwriting and code execution.
* CAN-2004-1487:
- Prevent hosts named ".." from writing to ../.
- Prevent "%00" truncating C strings that hold URLs.
- Patch backported from 1.10 release.
* CAN-2004-1488:
- Filter and escape untrusted HTTP response strings.
- Patch backported from 1.10 release.
* CAN-2004-2014:
- Open output files with O_EXCL and give up if that fails. This prevents
the overwriting of arbitrary files by creating a symlink between the
output file name determination and the actual creation.
- Patch backported from 1.10 release.
-- Martin Pitt <email address hidden> Tue, 28 Jun 2005 10:35:59 +0000
Upload details
- Uploaded by:
- Ubuntu Archive Auto-Sync
- Uploaded to:
- Warty
- Original maintainer:
- Noël Köthe
- Architectures:
- any
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| wget_1.9.1-4ubuntu0.1.dsc | 614 bytes | 3afba485e0571e9be2274eff966f6a432e542e2067cf66280ecfcd2e746540a2 |
| wget_1.9.1.orig.tar.gz | 1.3 MiB | 69044b87c517b986dbc17a5f7e4de430cb56e605330c19c6bb0d384d5c37e638 |
| wget_1.9.1-4ubuntu0.1.diff.gz | 16.9 KiB | 82b8246af423bd0eff2734a2ba259467f1e7e28983cbe31093aa525f39f5c1b6 |
No changes file available.
Binary packages built by this source
- wget: No summary available for wget in ubuntu warty.
No description available for wget in ubuntu warty.
