Overview

File _patchinfo of Package patchinfo.2984

<patchinfo incident="2984">
  <issue id="937096" tracker="bnc">VUL-1: wget: mitigation for CVE-2015-2059 (libidn: out-of-bounds read with stringprep on invalid UTF-8)</issue>
  <issue id="958342" tracker="bnc">wget fails with basicauth: Failed writing HTTP request: Bad file descriptor</issue>
  <issue id="984060" tracker="bnc">VUL-0: CVE-2016-4971: wget: HTTP to a FTP redirection file name confusion vulnerability</issue>
  <issue id="2016-4971" tracker="cve" />
  <issue id="2015-2059" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jmoellers</packager>
  <description>
This update for wget fixes the following issues:

 - Fix for HTTP to a FTP redirection file name confusion vulnerability
   (bsc#984060, CVE-2016-4971).
 - Work around a libidn  vulnerability
   (bsc#937096, CVE-2015-2059).
 - Fix for wget fails with basicauth: Failed writing HTTP request:
   Bad file descriptor
   (bsc#958342)
</description>
  <summary>Security update for wget</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places