SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for wget-1.21.1-4.1.i586.rpm :

* Mon May 10 2021 Josef Möllers - When running recursively, wget will verify the length of the whole URL when saving the files. This will make it overwrite files with truncated names, throwing the \"The name is too long, ... trying to shorten\" messages. The patch moves the length check code to a separate function and call it from the append_dir_structure() for each path element. [ bsc#1181173, 0001-src-main.c-Introduce-truncate_filename-option.patch]
* Mon May 10 2021 Josef Möllers - If wget for an http URL is redirected to a different site (hostname parts of URLs differ), then any \"Authenticate\" and \"Cookie\" header entries are discarded. [bsc#1175551, wget-do-not-propagate-credentials.patch]
* Sun Jan 24 2021 Dirk Müller - update to 1.21.1:
* Fix compilation on MacOS and Solaris 9
* Resove bashism from configure.ac
* Fix a compilation warning on 32-bit systems- remove-env-from-shebang.patch: refresh
* Sat Jan 02 2021 Andreas Stieger - GNU wget 1.21:
* Improve the number of translated strings
* Remove all uses of alloca
* Fix buffer overflows in progress bar code in some locales
* Fix two null pointer accesses
* Amend cookie file header to be recognized by the \'file\' command
* Post Handshake Authentication for OpenSSL- drop obsolete texinfo packaging macros
* Thu Mar 12 2020 Paolo Stivanin - split lang files into separate lang package- add remove-env-from-shebang.patch
* Fri Apr 05 2019 josef.moellersAATTsuse.com- Upgrade to GNU wget 1.20.3:
* Finally fixed the buffer overflow vulnerability
* obsoletes patch wget-buffer-overflow-CVE-2019-5953.patch [bsc#1131493, CVE-2019-5953]
* Wed Apr 03 2019 seanlewAATTopensuse.org- GNU wget 1.20.2:
* NTLM authentication will retry under certain cases
* Fixed a buffer overflow vulnerability
* Fri Jan 11 2019 Martin Pluskal - Use pcre2- Make building more verbose
* Fri Dec 28 2018 astiegerAATTsuse.com- GNU wget 1.20.1:
* --xattr is no longer default since it introduces privacy issues
* --xattr saves the Referer as scheme/host/port, user/pw/path/query/fragment are no longer saved to prevent privacy issues
* --xattr saves the Original URL without user/password to prevent privacy issues
* all of the above fix CVE-2018-20483 (bsc#1120382)
* Fri Nov 30 2018 josef.moellersAATTsuse.com- Version update to 1.20:
* Add new option `--retry-on-host-error` to treat local errors as transient and hence Wget will retry to download the file after a brief waiting period.
* multiple potential resource leaks as found by static analysis.
* Wget will now not create an empty wget-log file when running with -q and -b. switches together
* When compiled using the GnuTLS = 3.6.3, Wget now has support for TLSv1.3.
* Now there is support for using libpcre2 for regex pattern matching.
* When downloading over FTP recursively, one can now use the - -accept,reject -regex switches to fine-tune the downloaded files.
* Building Wget from the git sources now requires autoconf 2.63 or above. Building from the Tarballs works as it used to. [bsc#1167919, wget-ignore-void-retvalue.patch]
* Mon May 07 2018 josef.moellersAATTsuse.com- GNU wget 1.19.5:
* Fix cookie injection (CVE-2018-0494, bsc#1092061)
* Enable TLS1.3 with recent OpenSSL environment
* New option --ciphers to set GnuTLS / OpenSSL ciphers directly
* Updated CSS grammar to CSS 2.2
* Fixed several memleaks found by OSS-Fuzz
* Fixed several buffer overflows found by OSS-Fuzz
* Fixed several integer overflows found by OSS-Fuzz
* Several minor bug fixes [bsc#1092061, CVE-2018-0494, wget-ignore-void-retvalue.patch]
* Fri Feb 16 2018 josef.moellersAATTsuse.com- Original package had sources lzip compressed. Downloaded .gz compressed file including signature file.
* Mon Jan 22 2018 avindraAATTopensuse.org- GNU wget 1.19.4:
* Support for Content-Encoding and Transfer-Encoding have been marked as experimental and disabled by default- includes 1.19.3:
* Prevent erroneous decompression of .gz and .tgz files with broken servers
* Added support for HTTP 308 Permanent Redirect response
* Fix segfault in some cases where the Content-Type header is not sent
* Support OpenSSL 1.1 builds without using deprecated features
* Several minor bug fixes- switch to lz release (smaller)- cleanup with spec-cleaner
  
ICM