Accepting request 537218 from home:AndreasStieger:branches:network:utilities

GNU wget 1.19.2 * CVE-2017-13089: Stack overflow in HTTP protocol handling (bsc#1064715) * CVE-2017-13090: Heap overflow in HTTP protocol handling (bsc#1064716) OBS-URL: https://build.opensuse.org/request/show/537218 OBS-URL: https://build.opensuse.org/package/show/network:utilities/wget?expand=0&rev=82
2017-10-27 16:40:25 +00:00
parent 0ca6fab31f
commit dfdc30c146
10 changed files with 32 additions and 60 deletions
--- a/wget.changes
+++ b/wget.changes
@@ -1,3 +1,22 @@
+-------------------------------------------------------------------
+Fri Oct 27 16:05:55 UTC 2017 - astieger@suse.com
+
+- GNU wget 1.19.2:
+  * CVE-2017-13089: Stack overflow in HTTP protocol handling (bsc#1064715)
+  * CVE-2017-13090: Heap overflow in HTTP protocol handling (bsc#1064716)
+  * New option --compression for gzip Content-Encoding
+  * New option --[no]-netrc to control .netrc parsing
+  * Added GNU extensions to .netrc parsing
+  * Improved IDNA 2003 compatibility
+  * Fix VPATH issues
+  * Improved and extended the test suite
+  * Support Wayback Machine's X-Archive-Orig-last-modified
+  * Several bug fixes
+- drop upstreamed patches:
+  * wget-CVE-2017-6508.patch
+  * wget-416-but-file-not-complete.patch
+- unfuzz wget-errno-clobber.patch
+
 -------------------------------------------------------------------
 Thu Sep 21 06:45:00 UTC 2017 - josef.moellers@suse.com