OpenCSW question about package wget

Dagobert Michelsen dam at opencsw.org
Thu Jan 22 10:31:44 CET 2015


Hi Doug,

> Am 22.01.2015 um 05:13 schrieb doug.poland at plexus.com:
> I was wondering if you have plans to build and deploy wget 1.16?  It seems CVE-2014-4877 (GNU Wget Symlink Arbitrary Filesystem Access Vulnerability) exists in 1.15 and below.

Yes, I am working on it. Unfortunately wget 1.16.1 does not compile easily on Solaris,
I am working with upstream to resolve this.


Best regards

  — Dago


-- 
"You don't become great by trying to be great, you become great by wanting to do something,
and then doing it so hard that you become great in the process." - xkcd #896

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2418 bytes
Desc: not available
URL: <http://lists.opencsw.org/pipermail/users/attachments/20150122/5a72cbed/attachment-0001.p7s>


More information about the users mailing list