Mailinglist Archive: opensuse-security (24 mails)

< Previous Next >
Re: [opensuse-security] Bug in wget: CVE-2014-4877

yes, we are tracking it here:

thank you

Victor Pereira

On 10/30/2014 09:20 AM, Sverre Moe wrote:
A new version of wget is out, 1.16
* Noteworthy changes in Wget 1.16
** No longer create local symbolic links by default. Closes CVE-2014-4877.

OpenSUSE 13.1 uses wget-1.14
Last changes: Thu May 2 17:50:50 UTC 2013

OpenSUSE 13.2 uses wget-1.15
Last changes: Sun Jan 19 22:02:25 UTC 2014

When will we see a fix for wget on OpenSUSE?
I also use some SLES and have not seen any indication that SUSE is on
this either.

Victor Pereira
SUSE LINUX Products GmbH
GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer
HRB 21284 (AG Nürnberg)

To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-security+owner@xxxxxxxxxxxx

< Previous Next >
List Navigation