Security update for wget (important)

2017-10-28T00:14:14
ID OPENSUSE-SU-2017:2884-1
Type suse
Reporter Suse
Modified 2017-10-28T00:14:14

Description

This update for wget fixes the following security issues:

  • CVE-2017-13089,CVE-2017-13090: Missing checks for negative remaining_chunk_size in skip_short_body and fd_read_body could cause stack buffer overflows, which could have been exploited by malicious servers. (bsc#1064715,bsc#1064716)

This update was imported from the SUSE:SLE-12:Update update project.