[Git][security-tracker-team/security-tracker][master] CVE-2018-20483/wget fixed in unstable with new upstream version upload
Salvatore Bonaccorso
carnil at debian.org
Thu Dec 27 20:14:31 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e575ebae by Salvatore Bonaccorso at 2018-12-27T20:14:03Z
CVE-2018-20483/wget fixed in unstable with new upstream version upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -103,7 +103,7 @@ CVE-2018-20485 (Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has X
CVE-2018-20484 (Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has XSS in ...)
NOT-FOR-US: Zoho ManageEngine ADSelfService Plus
CVE-2018-20483 (set_file_metadata in xattr.c in GNU Wget before 1.20.1 stores a file's ...)
- - wget <unfixed> (bug #917375)
+ - wget 1.20.1-1 (bug #917375)
[stretch] - wget <not-affected> (Vulnerable code introduced in 1.19)
[jessie] - wget <not-affected> (Vulnerable code introduced in 1.19)
NOTE: https://twitter.com/marcan42/status/1077676739877232640
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e575ebaef7514ad602aa168e1902b540950a41ec
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e575ebaef7514ad602aa168e1902b540950a41ec
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181227/0b0b87cd/attachment.html>
More information about the debian-security-tracker-commits
mailing list