I have noticed that wget hasn't been updated. If you are not aware of the
issue, here is the advisory:
-
Red Hat, Inc. Red Hat Security Advisory
Synopsis: Updated wget packages fix directory traversal
Hello
As a translator of the package in the French team
someone pointed out that the year date of the copyright
notice is not update (no 2002 mention).
Please forward the message.
Thanks in advance
Best regards
Michel Robitaille
Hi all!
I am not 100% sure why this is so, but it is reproducable on my several
linux systems. So:
1. Create a new directory and cd to it (mkdir /tmp/mydir && /tmp/mydir)
2. Run wget with an ftp site to get a dir (wget --recursive
ftp://ftp.gnu.org/pub/gnu/xinfo*) for example
3. See the time of
Daniel Stenberg <[EMAIL PROTECTED]> wrote:
> I find it mildly annoying that I have not seen this discussed or even
> mentioned in here.
That's actually rather rude of Red Hat, I think.
Of course, since wget development seems kind of dead at the moment, perhaps
Red Hat have already got into the h
On Wed, 2002-12-11 at 08:26, Daniel Stenberg wrote:
> I find it mildly annoying that I have not seen this discussed or even
> mentioned in here.
>
> Or am I just ignorant?
No, you aren't.
See
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0102.html
...
wget (CVE: CAN-2002-1344)
-
I find it mildly annoying that I have not seen this discussed or even
mentioned in here.
Or am I just ignorant?
--
Daniel Stenberg - http://daniel.haxx.se - +46-705-44 31 77
ech`echo xiun|tr nu oc|sed 'sx\([sx]\)\([xoi]\)xo un\2\1 is xg'`ol
-- Forwarded message --
Date: