--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-11836
2009-11-20 04:26:21
--------------------------------------------------------------------------------

Name        : wget
Product     : Fedora 12
Version     : 1.12
Release     : 2.fc12
URL         : Summary     : A utility for retrieving files using the HTTP or FTP protocols
Description :
GNU Wget is a file retrieval utility which can use either the HTTP or
FTP protocols. Wget features include the ability to work in the
background while you are logged out, recursive retrieval of
directories, file name wildcard matching, remote file timestamp
storage and comparison, use of Rest with FTP servers and Range with
HTTP servers to retrieve files over slow or unstable connections,
support for Proxy servers, and configurability.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 18 2009 Karsten Hopp  1.12-2
- don't provide /usr/share/info/dir
* Tue Nov 17 2009 Karsten Hopp  1.12-1
- update to wget-1.12
- fixes CVE-2009-3490 wget: incorrect verification of SSL certificate
  with NUL in name
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #520454 - CVE-2009-3490 wget: incorrect verification of SSL certificate with NUL in name
        https://bugzilla.redhat.com/show_bug.cgi?id=520454
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update wget' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 12: wget Security Update

December 3, 2009

Summary

GNU Wget is a file retrieval utility which can use either the HTTP or

FTP protocols. Wget features include the ability to work in the

background while you are logged out, recursive retrieval of

directories, file name wildcard matching, remote file timestamp

storage and comparison, use of Rest with FTP servers and Range with

HTTP servers to retrieve files over slow or unstable connections,

support for Proxy servers, and configurability.

ChangeLog:

* Wed Nov 18 2009 Karsten Hopp 1.12-2

- don't provide /usr/share/info/dir

* Tue Nov 17 2009 Karsten Hopp 1.12-1

- update to wget-1.12

- fixes CVE-2009-3490 wget: incorrect verification of SSL certificate

with NUL in name

References:

[ 1 ] Bug #520454 - CVE-2009-3490 wget: incorrect verification of SSL certificate with NUL in name

https://bugzilla.redhat.com/show_bug.cgi?id=520454

This update can be installed with the "yum" update program. Use

su -c 'yum update wget' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

http://fedoraproject.org/keys

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora Update Notification FEDORA-2009-11836 2009-11-20 04:26:21 Name : wget Product : Fedora 12 Version : 1.12 Release : 2.fc12 URL : Summary : A utility for retrieving files using the HTTP or FTP protocols Description : GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest with FTP servers and Range with HTTP servers to retrieve files over slow or unstable connections, support for Proxy servers, and configurability. ChangeLog: * Wed Nov 18 2009 Karsten Hopp 1.12-2 - don't provide /usr/share/info/dir * Tue Nov 17 2009 Karsten Hopp 1.12-1 - update to wget-1.12 - fixes CVE-2009-3490 wget: incorrect verification of SSL certificate with NUL in name References: [ 1 ] Bug #520454 - CVE-2009-3490 wget: incorrect verification of SSL certificate with NUL in name https://bugzilla.redhat.com/show_bug.cgi?id=520454 This update can be installed with the "yum" update program. Use su -c 'yum update wget' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce

Change Log

References

Update Instructions

Severity
Name : wget
Product : Fedora 12
Version : 1.12
Release : 2.fc12
URL : Summary : A utility for retrieving files using the HTTP or FTP protocols

Related News