From the announcement mail: This version fixes CVE-2018-0494 (Cookie injection vulnerability) found by Harry Sintonen.
arm64 stable
amd64 stable
commit a9c5234 builds amd64 but dies on armv7 with: sed -i -e "s:/usr/local/etc:${EPREFIX}/etc:g" "${ED%/}"/etc/wgetrc "${ED%/}"/usr/share/man/man1/wget.1 "${ED%/}"/usr/share/info/wget.info || die sed: can't read /var/tmp/portage/net-misc/wget-1.19.5/image/usr/share/man/man1/wget.1: No such file or directory
x86 stable
commit 282e621f25cad8aa8f0b9f0ba8244e495de522e0 Author: Jeroen Roovers <jer@gentoo.org> Date: Tue May 8 14:43:49 2018 +0200 net-misc/wget: Stable for HPPA too.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5927c6b572288cc5be84b20082fa70658e9884cc commit 5927c6b572288cc5be84b20082fa70658e9884cc Author: Rolf Eike Beer <eike@sf-mail.de> AuthorDate: 2018-05-08 19:38:50 +0000 Commit: Sergei Trofimovich <slyfox@gentoo.org> CommitDate: 2018-05-08 21:16:33 +0000 net-misc/wget: stable 1.19.5 for sparc Bug: https://bugs.gentoo.org/655216 Package-Manager: Portage-2.3.24, Repoman-2.3.6 RepoMan-Options: --include-arches="sparc" net-misc/wget/wget-1.19.5.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=89a911feff2f70be994d6b3b043dd25d37f85ae7 commit 89a911feff2f70be994d6b3b043dd25d37f85ae7 Author: Sergei Trofimovich <slyfox@gentoo.org> AuthorDate: 2018-05-11 21:59:06 +0000 Commit: Sergei Trofimovich <slyfox@gentoo.org> CommitDate: 2018-05-11 21:59:10 +0000 net-misc/wget: stable 1.19.5 for ia64, bug #655216 Bug: https://bugs.gentoo.org/655216 Package-Manager: Portage-2.3.36, Repoman-2.3.9 RepoMan-Options: --include-arches="ia64" net-misc/wget/wget-1.19.5.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
Stable on alpha.
GLSA request filed
This issue was resolved and addressed in GLSA 201806-01 at https://security.gentoo.org/glsa/201806-01 by GLSA coordinator Aaron Bauman (b-man).