(RHSA-2018:3052) Moderate: wget security and bug fix update

2018-10-30T08:13:12
ID RHSA-2018:3052
Type redhat
Reporter RedHat
Modified 2018-10-30T09:23:08

Description

The wget packages provide the GNU Wget file retrieval utility for HTTP, HTTPS, and FTP protocols.

Security Fix(es):

  • wget: Cookie injection allows malicious website to write arbitrary cookie entries into cookie jar (CVE-2018-0494)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.