Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-31879

A flaw was found in wget. If wget sends an Authorization header as part of a query and receives an HTTP REDIRECT to a third party in return, the Authorization header will be forwarded as part of the redirected request. This issue creates a password leak, as the second server receives the password. The highest threat from this vulnerability is confidentiality. (CVE-2021-31879)

Source

ALAS2022-2022-134

Amazon Linux 2022 Security Advisory: ALAS-2022-134
Advisory Release Date: 2022-09-13 18:37 Pacific
Advisory Updated Date: 2022-09-21 20:03 Pacific

Severity: Medium

References: CVE-2021-31879

Issue Overview:

A flaw was found in wget. If wget sends an Authorization header as part of a query and receives an HTTP REDIRECT to a third party in return, the Authorization header will be forwarded as part of the redirected request. This issue creates a password leak, as the second server receives the password. The highest threat from this vulnerability is confidentiality. (CVE-2021-31879)

Affected Packages:

wget

Issue Correction:
Run dnf update wget --releasever=2022.0.20220921 to update your system.

New Packages:

aarch64:
    wget-debuginfo-1.21.3-1.amzn2022.aarch64
    wget-1.21.3-1.amzn2022.aarch64
    wget-debugsource-1.21.3-1.amzn2022.aarch64

i686:
    wget-debuginfo-1.21.3-1.amzn2022.i686
    wget-1.21.3-1.amzn2022.i686
    wget-debugsource-1.21.3-1.amzn2022.i686

src:
    wget-1.21.3-1.amzn2022.src

x86_64:
    wget-debuginfo-1.21.3-1.amzn2022.x86_64
    wget-1.21.3-1.amzn2022.x86_64
    wget-debugsource-1.21.3-1.amzn2022.x86_64

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2022-2022-134

ALAS2022-2022-134

Vulmon Search

About

Products

Connect