Hello community, here is the log from the commit of package wget for openSUSE:Factory checked in at 2017-10-25 18:00:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/wget (Old) and /work/SRC/openSUSE:Factory/.wget.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "wget" Wed Oct 25 18:00:50 2017 rev:49 rq: version:1.19.1 Changes: -------- --- /work/SRC/openSUSE:Factory/wget/wget.changes 2017-10-25 17:44:49.475009202 +0200 +++ /work/SRC/openSUSE:Factory/.wget.new/wget.changes 2017-10-25 18:00:51.813841269 +0200 @@ -2,9 +1,0 @@ -Tue Oct 24 07:07:32 UTC 2017 - [email protected] - -- Fixed two stack overflow vulnerabilities if a chunksize is - negative. - [bsc#1064715,wget-stack-overflow-on-negative-chunksize-CVE-2017-13089.patch, - bsc#1064716,wget-stack-overflow-on-negative-chunksize-CVE-2017-13090.patch, - CVE-2017-13089,CVE-2017-13090] - -------------------------------------------------------------------- Old: ---- wget-stack-overflow-on-negative-chunksize-CVE-2017-13089.patch wget-stack-overflow-on-negative-chunksize-CVE-2017-13090.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ wget.spec ++++++ --- /var/tmp/diff_new_pack.m2Rtr5/_old 2017-10-25 18:00:52.457811043 +0200 +++ /var/tmp/diff_new_pack.m2Rtr5/_new 2017-10-25 18:00:52.461810855 +0200 @@ -35,8 +35,6 @@ Patch8: wget-errno-clobber.patch Patch9: wget-CVE-2017-6508.patch Patch10: wget-416-but-file-not-complete.patch -Patch11: wget-stack-overflow-on-negative-chunksize-CVE-2017-13089.patch -Patch12: wget-stack-overflow-on-negative-chunksize-CVE-2017-13090.patch BuildRequires: automake BuildRequires: gpgme-devel >= 0.4.2 BuildRequires: libcares-devel @@ -85,8 +83,6 @@ %patch8 -p1 %patch9 -p1 %patch10 -p1 -%patch11 -p1 -%patch12 -p1 %build %if 0%{?suse_version} > 1110
