Updated wget packages fix security vulnerability

🗓️ 05 Jan 2019 21:49:27Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 45 Views

Updated wget 1.19+ fixes xattrs security issu

Reporter	Title	Published	Views	Family All 79
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues	1 Mar 202418:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in wget	31 Jan 202423:03	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in 'GNU Wget' affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2018-20483)	12 Jan 202321:59	–	ibm
FreeBSD	wget -- security flaw in caching credentials passed as a part of the URL	25 Dec 201800:00	–	freebsd
Tenable Nessus	Amazon Linux 2 : curl (ALAS-2019-1162)	19 Feb 201900:00	–	nessus
Tenable Nessus	Amazon Linux AMI : curl (ALAS-2019-1151)	8 Feb 201900:00	–	nessus
Tenable Nessus	CentOS 8 : curl (CESA-2019:3701)	29 Jan 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : wget (EulerOS-SA-2019-1663)	27 Jun 201900:00	–	nessus
Tenable Nessus	Fedora 29 : wget (2019-088875c43a)	7 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 29 : curl (2019-427a0ba9e3)	24 Jan 201900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	6	any	wget	1.20.1-1	wget-1.20.1-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
openwall	www.openwall.com/lists/oss-security/2019/01/01/1

05 Jan 2019 21:49Current

1.4Low risk

Vulners AI Score1.4

CVSS 22.1

CVSS 37.8

EPSS0.00659

wget security vulnerability xattrs fix version 1.19 'referer' url extended attributes cve-2018-20483 unix