From patchwork Wed Jan 24 18:32:24 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Matthias Fischer X-Patchwork-Id: 1632 Return-Path: Received: from mail01.ipfire.org (unknown [172.28.1.200]) by web02.ipfire.org (Postfix) with ESMTP id C9A7160250 for ; Wed, 24 Jan 2018 08:32:31 +0100 (CET) Received: from mail01.ipfire.org (localhost [IPv6:::1]) by mail01.ipfire.org (Postfix) with ESMTP id 3D7E54637; Wed, 24 Jan 2018 08:32:31 +0100 (CET) Received: from Devel.localdomain (p4FDF0C34.dip0.t-ipconnect.de [79.223.12.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (Client did not present a certificate) by mail01.ipfire.org (Postfix) with ESMTPSA id 80B434624 for ; Wed, 24 Jan 2018 08:32:29 +0100 (CET) From: Matthias Fischer To: development@lists.ipfire.org Subject: [PATCH] wget: Update to 1.9.4 Date: Wed, 24 Jan 2018 08:32:24 +0100 Message-Id: <20180124073224.2206-1-matthias.fischer@ipfire.org> X-Mailer: git-send-email 2.15.1 X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: development-bounces@lists.ipfire.org Sender: "Development" Excerpts from changelog (Details => http://git.savannah.gnu.org/cgit/wget.git): "Switch off compression by default Gzip compression has a number of bugs which need to be ironed out before we can support it by default. Some of these stem from a misunderstanding of the HTTP spec, but a lot of them are also due to many web servers not being compliant with RFC 7231. With this commit, I am marking GZip compression support as experimental in GNU Wget pending further investigation and the addition of tests. * src/http.c (gethttp): Fix bug that prevented all files from being decompressed * src/host.c (sufmatch): Fix to domain matching Replace HTTP urls with HTTPS where valid Avoid redirecting output to file when tcgetpgrp fails * src/log.c (check_redirect_output): tcgetpgrp can return -1 (ENOTTY), be sure to check whether a valid controlling terminal exists before redirecting. (Fixes: #51181) Fix heap overflow in HTTP protocol handling (CVE-2017-13090) Fix stack overflow in HTTP protocol handling (CVE-2017-13089)" Best, Matthias Signed-off-by: Matthias Fischer --- lfs/wget | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lfs/wget b/lfs/wget index 774928bdc..7a5cdbb11 100644 --- a/lfs/wget +++ b/lfs/wget @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2017 IPFire Team # +# Copyright (C) 2007-2018 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -24,7 +24,7 @@ include Config -VER = 1.19.2 +VER = 1.19.4 THISAPP = wget-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -40,7 +40,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_MD5 = caabf9727fa429626316619a6369fffa +$(DL_FILE)_MD5 = a2a2c1dc4ac5003fc25a8e60b4a9464e install : $(TARGET)