OracleVM 3.3 : wget (OVMSA-2014-0036)
High Nessus Plugin ID 79551
SynopsisThe remote OracleVM host is missing a security update.
DescriptionThe remote OracleVM system is missing necessary patches to address critical security updates :
- Fix CVE-2014-4877 wget: FTP symlink arbitrary filesystem access (#1156133)
- Fix the parsing of weblink when doing recursive retrieving (#960137)
- Fix errors found by static analysis of source code (#873216)
- Add SNI (Server Name Indication) support (#909604)
- Add --trust-server-names option to fix CVE-2010-2252 (#1062190)
- Fix wget to recognize certificates with alternative names (#736445)
SolutionUpdate the affected wget package.