Hello community, here is the log from the commit of package wget for openSUSE:Factory checked in at 2019-04-10 23:10:21 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/wget (Old) and /work/SRC/openSUSE:Factory/.wget.new.27019 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "wget" Wed Apr 10 23:10:21 2019 rev:58 rq:692215 version:1.20.3 Changes: -------- --- /work/SRC/openSUSE:Factory/wget/wget.changes 2019-04-05 11:55:00.286260804 +0200 +++ /work/SRC/openSUSE:Factory/.wget.new.27019/wget.changes 2019-04-10 23:10:23.215918767 +0200 @@ -1,0 +2,7 @@ +Fri Apr 5 14:57:54 UTC 2019 - josef.moellers@suse.com + +- Upgrade to GNU wget 1.20.3: + * Finally fixed the buffer overflow vulnerability + [CVE-2019-5953] + +------------------------------------------------------------------- Old: ---- wget-1.20.2.tar.gz wget-1.20.2.tar.gz.sig New: ---- wget-1.20.3.tar.gz wget-1.20.3.tar.gz.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ wget.spec ++++++ --- /var/tmp/diff_new_pack.tItp52/_old 2019-04-10 23:10:24.195919880 +0200 +++ /var/tmp/diff_new_pack.tItp52/_new 2019-04-10 23:10:24.199919885 +0200 @@ -12,18 +12,18 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# Please submit bugfixes or comments via http://bugs.opensuse.org/ # %bcond_with regression_tests Name: wget -Version: 1.20.2 +Version: 1.20.3 Release: 0 Summary: A Tool for Mirroring FTP and HTTP Servers License: GPL-3.0-or-later Group: Productivity/Networking/Web/Utilities -URL: https://www.gnu.org/software/wget/ +Url: https://www.gnu.org/software/wget/ Source: https://ftp.gnu.org/gnu/wget/%{name}-%{version}.tar.gz Source1: https://ftp.gnu.org/gnu/wget/%{name}-%{version}.tar.gz.sig Source2: https://savannah.gnu.org/project/memberlist-gpgkeys.php?group=wget&download=1#/wget.keyring ++++++ wget-1.20.2.tar.gz -> wget-1.20.3.tar.gz ++++++ ++++ 6614 lines of diff (skipped)