-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 09 Mar 2017 10:22:00 +0000 Source: wget Binary: wget Architecture: source amd64 Version: 1.13.4-3+deb7u4 Distribution: wheezy-security Urgency: high Maintainer: Noël Köthe <noel@debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: wget - retrieves files from the web Closes: 857073 Changes: wget (1.13.4-3+deb7u4) wheezy-security; urgency=high . * CVE-2017-6508: Prevent a CRLF injection vulnerability which allowed remote attackers to inject arbitrary HTTP headers via CRLF sequences in the host subcomponent of a URL. (Closes: #857073) Checksums-Sha1: c8ee9f062b4e9ba0f1f0d78c29ab15a6917a8302 1768 wget_1.13.4-3+deb7u4.dsc e25e1b487026ddd9026ca7d26af21f044c884d28 2815185 wget_1.13.4.orig.tar.gz 763320349e7d7dd3203d2513e1c67266e9b2e0f8 28807 wget_1.13.4-3+deb7u4.debian.tar.gz e4f7413d7242b5193c6ddf17cc35086260456187 767246 wget_1.13.4-3+deb7u4_amd64.deb Checksums-Sha256: 1d62e31002bce8eb855c9f67d7a79970d0c823a2a689adbb49e05acb75de0bd9 1768 wget_1.13.4-3+deb7u4.dsc 24c7710bc9f220ce23d8a9e0f5673b0efc1cace62db6de0239b5863ecc934dcd 2815185 wget_1.13.4.orig.tar.gz 426c625ef6459e25a3bf991e5d16790e98b58d5af34ae9b38f468c902ee7a028 28807 wget_1.13.4-3+deb7u4.debian.tar.gz 7c0865ea32c262076b7a2ca21eaa85a0eec2272c034e61d0bb0753b50a8bf32d 767246 wget_1.13.4-3+deb7u4_amd64.deb Files: 5b566a6618c535165e8082d9d4c962ea 1768 web important wget_1.13.4-3+deb7u4.dsc 1df489976a118b9cbe1b03502adbfc27 2815185 web important wget_1.13.4.orig.tar.gz 6ed958476c3992230d4ea755109cb5cc 28807 web important wget_1.13.4-3+deb7u4.debian.tar.gz 9b4711bd87669e0e8ee61b9db4963384 767246 web important wget_1.13.4-3+deb7u4_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAljBLu0ACgkQHpU+J9Qx HlhEFQ/+L2EjXc9UNE0T8QJgldOHdMGjarr1XQG2gP5Gq6KiwS3hmUHjx2vKqwUt CLvidn+ZBqW6ZUMFNWbvA1Z1GZbhLA9bvQDVvk3QLwXUKLLICSv1vkLWLzgpDPIJ 97TFbZ0riHNIDQnM1cur20GFOXADlZV7XvqKdkyogWaw3QGRYgbS/cbDZuOLaSGB XxMs8riVvSJR4s323UTQRZqiIVtllpTy1OLW0P+vuqSzMqAIvGcscwe1fFxOxDU8 2alOtLi6hyGuxkDLxq5rey51WUQEWjGLUZzOzFej+jLwZTk4MF6D6qadrTRibsP2 HZTclna8MJJmhHWbSFB9iVBfS1+ugGJvTXdWnzS0PbI699ynd6rWNCkq/r25WL/g /xgAJsEGLOu5q3vmQYWEI4Wo5KhUiXwEyPIpMTPGgS6Jqsu46NyB+xpJQJ6frgWI hy0FWp4NqVIXddsriUCk78X9xD7T5Z18YlFzy3c3fLLksLs9+yEW0wpdQLTLbl/h CQ0yYb1k5UDAU+Trqha/k4a/TilRzx3H5bbrcg3W3eEsDvH8dL/urYAZ8HfXUqT6 tDxWaJksGv1jEFRHpkaQRRmOrhIIJbpp9r3fAdHdyzKUUadXTi5NpvKt2c8vaGsq X8vRvuIWPoYOSlDKD7X5fXbw6hMDhIHpYxekOF6bwJw02mZ8Nns= =hHNW -----END PGP SIGNATURE-----