Описание
ELSA-2024-5299: wget security update (MODERATE)
[1.19.5-12.0.1]
- SSLv3 support dropped from openssl, v3 test certificates need to be replaced [Orabug: 29613455]
[1.19.5-12]
- Resolves: RHEL-43559 - Misinterpretation of input may lead to improper behavior
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
wget
1.19.5-12.0.1.el8_10
Oracle Linux x86_64
wget
1.19.5-12.0.1.el8_10
Связанные CVE
Связанные уязвимости
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo ...