CVE-2026-58471
CVE-2026-58471 affects GNU Wget up to version 1.25.0. The vulnerability is a heap buffer overflow in the convert_fname() function in src/url.c, triggered by server-supplied filenames requiring character set conversion. When the output buffer is too small during iconv E2BIG reallocation, the reall...