Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 503
Alerts This Week
Warning Icon 1 503

Debian Wheezy: DLA-1375-1 Moderate: Wget Cookie Injection Issue

debian lts
Calendar Grey May 11, 2018
Dist Debian Esm H88
Debian 7 has issued a critical security update for wget to fix a cookie injection vulnerability that risks user session integrity. Immediate system upgrades are essential
Harry Sintonen have discovered a cookie injection vulnerability in wget caused by insufficient input validation, enabling an external attacker to inject arbitrary cookie values coo...

Summary

For Debian 7 "Wheezy", these problems have been fixed in version
1.13.4-3+deb7u6.

We recommend that you upgrade your wget packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Package: wget
Version: 1.13.4-3+deb7u6
CVE ID: CVE-2018-0494
Debian Bug: 898076

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.