Lucene search
RedHatRHSA-2009:1549HistoryNov 03, 2009 - 12:00 a.m.
(RHSA-2009:1549) Moderate: wget security update
2009-11-0300:00:00
access.redhat.com
18
EPSS
0.004
Percentile
74.1%
GNU Wget is a file retrieval utility that can use HTTP, HTTPS, and FTP.
Daniel Stenberg reported that Wget is affected by the previously published
βnull prefix attackβ, caused by incorrect handling of NULL characters in
X.509 certificates. If an attacker is able to get a carefully-crafted
certificate signed by a trusted Certificate Authority, the attacker could
use the certificate during a man-in-the-middle attack and potentially
confuse Wget into accepting it by mistake. (CVE-2009-3490)
Wget users should upgrade to this updated package, which contains a
backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | src | wget | <Β 1.11.4-2.el5_4.1 | wget-1.11.4-2.el5_4.1.src.rpm |
| RedHat | 4 | s390 | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.s390.rpm |
| RedHat | 4 | ia64 | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.ia64.rpm |
| RedHat | 5 | ppc | wget | <Β 1.11.4-2.el5_4.1 | wget-1.11.4-2.el5_4.1.ppc.rpm |
| RedHat | 4 | ppc | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.ppc.rpm |
| RedHat | 4 | src | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.src.rpm |
| RedHat | 5 | x86_64 | wget | <Β 1.11.4-2.el5_4.1 | wget-1.11.4-2.el5_4.1.x86_64.rpm |
| RedHat | 4 | x86_64 | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.x86_64.rpm |
| RedHat | 4 | s390x | wget | <Β 1.10.2-1.el4_8.1 | wget-1.10.2-1.el4_8.1.s390x.rpm |
| RedHat | 5 | ia64 | wget | <Β 1.11.4-2.el5_4.1 | wget-1.11.4-2.el5_4.1.ia64.rpm |
Related
openvas
openvas
Fedora Core 10 FEDORA-2009-11739 (wget)
2009-12-10 00:00:00
CentOS Update for wget CESA-2009:1549 centos3 i386
2011-08-09 00:00:00
CentOS Update for wget CESA-2009:1549 centos4 i386
2011-08-09 00:00:00
securityvulns
securityvulns
wget certificate spoofing
2009-10-07 00:00:00
[USN-842-1] Wget vulnerability
2009-10-07 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: wget-1.12-2.fc11
2009-12-03 04:56:35
[SECURITY] Fedora 10 Update: wget-1.12-2.fc10
2009-12-03 05:12:11
[SECURITY] Fedora 12 Update: wget-1.12-2.fc12
2009-12-03 04:56:18
centos
centos
wget security update
2009-11-03 21:48:02
nessus
nessus
Solaris 10 (x86) : 125216-07 (deprecated)
2009-12-02 00:00:00
Solaris 10 (sparc) : 125215-07
2018-03-12 00:00:00
Solaris 10 (sparc) : 125215-07 (deprecated)
2009-12-02 00:00:00
gentoo
gentoo
Wget: Certificate validation error
2009-10-20 00:00:00
oraclelinux
oraclelinux
wget security update
2009-11-03 00:00:00
seebug
seebug
Wget CA SSLηΈε½’θ―δΉ¦ιͺθ―ζΌζ΄
2009-11-05 00:00:00
ubuntu
ubuntu
Wget vulnerability
2009-10-06 00:00:00
veracode
veracode
Spoofing Attack
2020-04-10 00:42:35
debian
debian
ubuntucve
ubuntucve
CVE-2009-3490
2009-09-30 00:00:00
nvd
nvd
CVE-2009-3490
2009-09-30 15:30:00
cve
cve
CVE-2009-3490
2009-09-30 15:30:00
prion
prion
Design/Logic Flaw
2009-09-30 15:30:00
debiancve
debiancve
CVE-2009-3490
2009-09-30 15:30:00
cvelist
cvelist
CVE-2009-3490
2009-09-30 15:00:00
redhat
redhat
(RHSA-2009:1692) Important: rhev-hypervisor security and bug fix update
2009-12-23 00:00:00