CVE-2021-31879

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CVE-2021-31879

From:	Josef Moellers
Subject:	CVE-2021-31879
Date:	Tue, 4 May 2021 08:59:10 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.7.1

Hi,

I'm currently trying to tackle the CVE about passing credentials to
redirected servers.
I wonder if it may be necessary to be able to disable this feature, if
one trusts the servers, ie if some kind of command-line option might be
necessary.

Josef
-- 
SUSE Software Solutions Germany GmbH
Maxfeldstr. 5
90409 Nürnberg
Germany

(HRB 36809, AG Nürnberg)
Geschäftsführer: Felix Imendörffer

[Prev in Thread]

Current Thread

[Next in Thread]

CVE-2021-31879, Josef Moellers <=
- Re: CVE-2021-31879, Josef Moellers, 2021/05/07

Prev by Date: Re: Re:
Next by Date: Re: Confusing "Success" error message
Previous by thread: [bug #60494] Percent character in filename gets escaped twice
Next by thread: Re: CVE-2021-31879
Index(es):
- Date
- Thread