MIRRORS/poky
1
0
Fork 0
mirror of git://git.yoctoproject.org/poky.git synced 2025-08-22 00:42:05 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
kirkstone-4.0.28
poky/meta/recipes-extended/wget
History
Divya Chellam 0d7adecb6b wget: fix CVE-2024-10524 
Applications that use Wget to access a remote resource using
shorthand URLs and pass arbitrary user credentials in the URL
are vulnerable. In these cases attackers can enter crafted
credentials which will cause Wget to access an arbitrary host.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-10524

Upstream-patch:
https://git.savannah.gnu.org/cgit/wget.git/commit/?id=c419542d956a2607bbce5df64b9d378a8588d778

(From OE-Core rev: eed5d59c138c210df91f31ac718383ccaf921faf)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-01-24 07:49:28 -08:00
..
wget wget: fix CVE-2024-10524 2025-01-24 07:49:28 -08:00
wget_1.21.4.bb wget: fix CVE-2024-10524 2025-01-24 07:49:28 -08:00
wget.inc wget: upgrade 1.21.3 -> 1.21.4 2023-07-21 06:27:34 -10:00