[Buildroot] [PATCH] wget: security bump to version 1.18
Gustavo Zacarias
gustavo at zacarias.com.ar
Thu Jun 9 22:04:14 UTC 2016
Fixes:
CVE-2016-4971 - By default, on server redirects to a FTP resource, use
the original URL to get the local file name.
Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
---
package/wget/wget.hash | 2 +-
package/wget/wget.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/wget/wget.hash b/package/wget/wget.hash
index 159cd51..6d26723 100644
--- a/package/wget/wget.hash
+++ b/package/wget/wget.hash
@@ -1,2 +1,2 @@
# Locally calculated after checking pgp signature
-sha256 fe559b61eb9cc01635ac6206a14e02cb51591838c35fa83c7a4aacae0bdd97c9 wget-1.17.1.tar.xz
+sha256 b5b55b75726c04c06fe253daec9329a6f1a3c0c1878e3ea76ebfebc139ea9cc1 wget-1.18.tar.xz
diff --git a/package/wget/wget.mk b/package/wget/wget.mk
index 2c6ccf2..9cda76b 100644
--- a/package/wget/wget.mk
+++ b/package/wget/wget.mk
@@ -4,7 +4,7 @@
#
################################################################################
-WGET_VERSION = 1.17.1
+WGET_VERSION = 1.18
WGET_SOURCE = wget-$(WGET_VERSION).tar.xz
WGET_SITE = $(BR2_GNU_MIRROR)/wget
WGET_DEPENDENCIES = host-pkgconf
--
2.7.3
More information about the buildroot
mailing list