USN-3464-1: Wget vulnerabilities

Question

USN-3464-1: Wget vulnerabilities

Closed this issue 7 years ago · 2 comments

Hi!

Both Cedar nad Heroku stack images are vurnable to usn-3464-1. wget package should be upgraded to:

Ubuntu 16.04 LTS - heroku/heroku:16
  wget 1.17.1-1ubuntu1.3
Ubuntu 14.04 LTS - heroku/cedar:14
  wget 1.15-1ubuntu1.14.04.3

Answer 1 · 2017-10-31T18:23:19.000Z

Hi! Thanks for bringing this to our attention. I've notified our security team; we'll release an update shortly. I'll leave this ticket open to track it.

Answer 2 · 2018-01-12T11:04:13.000Z

This is done.