[packages/wget] - up to 1.19.2; fixes CVE-2017-13089, CVE-2017-13090

Sat Oct 28 23:11:40 CEST 2017

commit 824511ec4df56bda08f2816115514a2710cf738c
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date:   Sat Oct 28 23:11:33 2017 +0200

    - up to 1.19.2; fixes CVE-2017-13089, CVE-2017-13090

 wget-wgetrc_path.patch | 7 ++++---
 wget.spec              | 8 ++++----
 2 files changed, 8 insertions(+), 7 deletions(-)
---

diff --git a/wget.spec b/wget.spec
index 042405d..87feca1 100644
--- a/wget.spec
+++ b/wget.spec
@@ -17,12 +17,12 @@ Summary(ru.UTF-8):	Утилита для получения файлов по п
 Summary(uk.UTF-8):	Утиліта для отримання файлів по протоколам HTTP та FTP
 Summary(zh_CN.UTF-8):	[通讯]功能强大的下载程序,支持断点续传
 Name:		wget
-Version:	1.19.1
-Release:	2
+Version:	1.19.2
+Release:	1
 License:	GPL v3+ with OpenSSL exception
 Group:		Networking/Utilities
-Source0:	http://ftp.gnu.org/gnu/wget/%{name}-%{version}.tar.xz
-# Source0-md5:	d30d82186b93fcabb4116ff513bfa9bd
+Source0:	http://ftp.gnu.org/gnu/wget/%{name}-%{version}.tar.lz
+# Source0-md5:	11663ce60f71c72773c30ae08a279011
 Source1:	http://www.mif.pg.gda.pl/homepages/ankry/man-PLD/%{name}-non-english-man-pages.tar.bz2
 # Source1-md5:	d8b2b56ec7461606c22edbafaf8a418f
 Patch0:		%{name}-info.patch
diff --git a/wget-wgetrc_path.patch b/wget-wgetrc_path.patch
index d4a3699..3c27f4a 100644
--- a/wget-wgetrc_path.patch
+++ b/wget-wgetrc_path.patch
@@ -46,15 +46,16 @@ diff -Nur wget-1.10/doc.orig/sample.wgetrc wget-1.10/doc/sample.wgetrc
 diff -Nur wget-1.10/doc.orig/wget.texi wget-1.10/doc/wget.texi
 --- wget-1.10/doc.orig/wget.texi	2005-06-22 09:42:36.000000000 +0200
 +++ wget-1.10/doc/wget.texi	2005-06-22 09:44:02.000000000 +0200
-@@ -190,14 +190,14 @@
+@@ -191,7 +191,7 @@ gauge can be customized to your preferen
  Most of the features are fully configurable, either through command line
  options, or via the initialization file @file{.wgetrc} (@pxref{Startup
  File}).  Wget allows you to define @dfn{global} startup files
 -(@file{/usr/local/etc/wgetrc} by default) for site settings. You can also
 +(@file{/etc/wgetrc} by default) for site settings. You can also
  specify the location of a startup file with the --config option.
-  
- 
+ To disable the reading of config files, use --no-config.
+ If both --config and --no-config are given, --no-config is ignored.
+@@ -200,7 +200,7 @@ If both --config and --no-config are giv
  @ignore
  @c man begin FILES
  @table @samp
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/wget.git/commitdiff/824511ec4df56bda08f2816115514a2710cf738c

