Next | Query returned 1 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2019-02-16 12:17:47 by Benny Siegert | Files touched by this commit (2)
Log message:
Pullup ticket #5908 - requested by spz
net/wget: security fix

Revisions pulled up:
- net/wget/Makefile                                             1.144
- net/wget/distinfo                                             1.58

---
   Module Name:	pkgsrc
   Committed By:	spz
   Date:		Sun Feb 10 19:49:58 UTC 2019

   Modified Files:
   	pkgsrc/net/wget: Makefile distinfo

   Log message:
   updating wget to 1.20.1, which fixes CVE-2018-20483

   Upstream changelog:
      * Changes in Wget 1.20.1

      ** --xattr is no longer default since it introduces privacy issues.

      ** --xattr saves the Referer as scheme/host/port, user/pw/path/query/fragment
         are no longer saved to prevent privacy issues.

      ** --xattr saves the Original URL without user/password to prevent
         privacy issues.

      * Changes in Wget 1.20

      ** Add new option `--retry-on-host-error` to treat local errors as
         transient and hence Wget will retry to download the file after
         a brief waiting period.

      ** Fixed multiple potential resource leaks as found by static analysis

      ** Wget will now not create an empty wget-log file when running with
         -q and -b switches together

      ** When compiled using the GnuTLS >= 3.6.3, Wget now has support for TLSv1.3

      ** Now there is support for using libpcre2 for regex pattern matching

      ** When downloading over FTP recursively, one can now use the
         --{accept,reject}-regex switches to fine-tune the downloaded files

      ** Building Wget from the git sources now requires autoconf 2.63 or above.
         Building from the Tarballs works as it used to.

Next | Query returned 1 messages, browsing 1 to 10 | previous