Security update for wget
This update for wget fixes the following security issues:
- CVE-2017-13089,CVE-2017-13090: Missing checks for negative remaining_chunk_size in skip_short_body and fd_read_body could
cause stack buffer overflows, which could have been exploited by malicious servers. (bsc#1064715,bsc#1064716)
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Josef Möllers (jmoellers)
Fixed bugs
bnc#1064715
VUL-0: CVE-2017-13089: wget: Missing check for negative remaining_chunk_size in skip_short_body causes buffer overflow
bnc#1064716
VUL-0: CVE-2017-13090: wget: Missing check for negative remaining_chunk_size in fd_read_body causes heap buffer overflow
