Package: wget Version: 1.13.4-3 Severity: normal Dear Maintainer,
I have noticed that wget dos not honor alternative DNS names in SSL certificates. I found bug #409938 that deals with this problem and was closed stating that wget 1.13-1 has been patched. But it seems that the patch got lost in newer versions. You can test on https://uran.webstep.net/ wget says the certificate is not trusted, while curl downloads without any problem. Best regards Vladislav Kurz -- System Information: Debian Release: 7.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500, 'stable'), (500, 'oldstable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/8 CPU cores) Locale: LANG=, LC_CTYPE= (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages wget depends on: ii dpkg 1.16.12 ii install-info 4.13a.dfsg.1-10 ii libc6 2.13-38 ii libgcrypt11 1.5.0-5+deb7u1 ii libgnutls26 2.12.20-7 ii libgpg-error0 1.10-3.1 ii libidn11 1.25-2 ii zlib1g 1:1.2.7.dfsg-13 wget recommends no packages. wget suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org