Your message dated Thu, 19 Mar 2015 15:22:24 +0000
with message-id <[email protected]>
and subject line Bug#745836: fixed in wget 1.16.3-2
has caused the Debian Bug report #745836,
regarding wget: certificate revocation is not checked
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
745836: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=745836
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: wget
Version: 1.15-1
Severity: grave
Tags: security
Justification: user security hole
Certificate revocation is not checked: wget downloads
https://www.cloudflarechallenge.com/
without any warning or error, contrary to Firefox (and to Chromium
when the CRLSet is up-to-date).
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.11-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages wget depends on:
ii libc6 2.18-4
ii libgnutls28 3.2.13-2
ii libidn11 1.28-2
ii libnettle4 2.7.1-2
ii libuuid1 2.20.1-5.7
ii zlib1g 1:1.2.8.dfsg-1
Versions of packages wget recommends:
ii ca-certificates 20140325
wget suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: wget
Source-Version: 1.16.3-2
We believe that the bug you reported is fixed in the latest version of
wget, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Noël Köthe <[email protected]> (supplier of updated wget package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 19 Mar 2015 12:14:46 +0100
Source: wget
Binary: wget
Architecture: source amd64
Version: 1.16.3-2
Distribution: unstable
Urgency: medium
Maintainer: Noël Köthe <[email protected]>
Changed-By: Noël Köthe <[email protected]>
Description:
wget - retrieves files from the web
Closes: 144076 745836 767283 768110 772020 779519
Changes:
wget (1.16.3-2) unstable; urgency=medium
.
* upload to unstable
Closing bugs from the experimental uploads since 1.16-1
Closes: #779519, #144076, #768110, #745836, #772020, #767283
Checksums-Sha1:
120fbb6b730640826c3fb1438f1c189b9e54bfb9 1770 wget_1.16.3-2.dsc
e1005873fef5158457ed211fe08581e36c13fe34 19424 wget_1.16.3-2.debian.tar.xz
29007e7fa3f91d9530f59727c4a0026f64959e7f 715544 wget_1.16.3-2_amd64.deb
Checksums-Sha256:
816525644f93a395ac1f4eb6f43787ca416bcf00c9cbbfa622c39decd4b0a1e6 1770
wget_1.16.3-2.dsc
fe3c0597687547a4b5e2679bef832435f18d69739c9f35c9dafc4addbbe3140c 19424
wget_1.16.3-2.debian.tar.xz
26ee822a1f2fd3fe8ce2e3c010a0fad45f520e0571ad41015d838fb103f851a2 715544
wget_1.16.3-2_amd64.deb
Files:
42209c3146a5f82862eb6d61a84f758d 1770 web important wget_1.16.3-2.dsc
374eae0b32a4e90d4805c43cde5b8293 19424 web important
wget_1.16.3-2.debian.tar.xz
7c0c2c86ae1e1a67626d54698406aa53 715544 web important wget_1.16.3-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Libh
-----END PGP SIGNATURE-----
--- End Message ---
