Описание
Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors.
A buffer overflow flaw was found in the GNU Wget in version 1.20.1 and earlier when processing Internationalized Resource Identifiers. This flaw allows an attacker to execute arbitrary code or cause a denial of service.
Отчет
This issue did not affect the versions of wget as shipped with Red Hat Enterprise Linux 5 and 6. This issue affects the versions of wget as shipped with Red Hat Enterprise Linux 7.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | wget | Not affected | ||
| Red Hat Enterprise Linux 6 | wget | Not affected | ||
| Red Hat Enterprise Linux 7 | wget | Fixed | RHSA-2019:1228 | 14.05.2019 |
| Red Hat Enterprise Linux 7.4 Advanced Update Support | wget | Fixed | RHSA-2019:3168 | 23.10.2019 |
| Red Hat Enterprise Linux 7.4 Telco Extended Update Support | wget | Fixed | RHSA-2019:3168 | 23.10.2019 |
| Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions | wget | Fixed | RHSA-2019:3168 | 23.10.2019 |
| Red Hat Enterprise Linux 7.5 Extended Update Support | wget | Fixed | RHSA-2019:2979 | 08.10.2019 |
| Red Hat Enterprise Linux 8 | wget | Fixed | RHSA-2019:0983 | 07.05.2019 |
Показывать по
Дополнительная информация
Статус:
8.8 High
CVSS3
Связанные уязвимости
Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors.
Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors.
Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers ...
8.8 High
CVSS3