Flatcar icon indicating copy to clipboard operation
Flatcar copied to clipboard
verified publisher icon flatcar

update: net-misc/wget

Open tormath1 opened this issue 1 year ago • 0 comments

Name: net-misc/wget CVEs: CVE-2024-38428 CVSSs: TBD Action Needed: upgrade to >= 1.24.5

Summary: url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.

refmap.gentoo: https://bugs.gentoo.org/930041

tormath1 avatar Jun 18 '24 10:06 tormath1