Brandon Vincent [2015-12-26 10:04:50-07] wrote: > I believe this problem was corrected by the GNU developers upstream > and should be fixed in wget (1.16-2). I don't see this version or a > newer package in proposed-updates, so you'll want to try the package > from the stretch (testing) repository. Thanks. So it was a wget bug after all: wget (1.16-2) unstable; urgency=medium * debian/changelog mention CVE-2014-4877 in 1.16-1 * debian/patches/wget-progressbar.patch upstream commited patch 76f6fe22 to fix progressbar. Closes: #768110 * debian/patches/wget-doc-CRLs.patch document that CRLs are not checked. Closes: #767283 -- Noël Köthe <noel@debian.org> Wed, 05 Nov 2014 12:15:02 +0100 The bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768110 -- /// Teemu Likonen - .-.. <https://github.com/tlikonen> // // PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///
Attachment:
signature.asc
Description: PGP signature