Synopsis: Important: wget security update Advisory ID: SLSA-2017:3075-1 Issue Date: 2017-10-26 CVE Numbers: CVE-2017-13089 CVE-2017-13090 -- Security Fix(es): * A stack-based and a heap-based buffer overflow flaws were found in wget when processing chunked encoded HTTP responses. By tricking an unsuspecting user into connecting to a malicious HTTP server, an attacker could exploit these flaws to potentially execute arbitrary code. (CVE-2017-13089, CVE-2017-13090) -- SL7 x86_64 wget-1.14-15.el7_4.1.x86_64.rpm wget-debuginfo-1.14-15.el7_4.1.x86_64.rpm - Scientific Linux Development Team