Update to 1.19.5 fixing CVE-2018-0494

Signed-off-by: Tomas Hozza <thozza@redhat.com>

.gitignore

@@ -14,3 +14,4 @@ wget-1.12.tar.bz2
 /wget-1.19.2.tar.gz
 /wget-1.19.4.tar.lz
 /wget-1.19.4.tar.gz
+/wget-1.19.5.tar.gz

sources

@@ -1 +1 @@
-SHA512 (wget-1.19.4.tar.gz) = e84b0c40235b160ade69e18f2f139c782eb2387edc97a847c11dbb906c0273daf6d0ef5afe20360ba965c7da8b5e109f5a45e39ea93d20ec945575203235943a
+SHA512 (wget-1.19.5.tar.gz) = 0d4964e0f5adb0c023edc831bde9c9f13f3222f6efc1ce93250d234ab937e92b53921624532fb0e6586151ddfdee6df9a7ca91a2a99b3d16e2e68401c625301b

wget-1.17-path.patch

@@ -1,8 +1,8 @@
 diff --git a/NEWS b/NEWS
-index 5e01a3c..88c7073 100644
+index d23ae95..aa3247f 100644
 --- a/NEWS
 +++ b/NEWS
-@@ -893,7 +893,7 @@ distributed with Wget.
+@@ -935,7 +935,7 @@ distributed with Wget.
  
  ** Compiles on pre-ANSI compilers.
  
@@ -11,7 +11,7 @@ index 5e01a3c..88c7073 100644
  
  ** Lots of bugfixes.
  
-@@ -956,7 +956,7 @@ Emacs, standalone info, or converted to HTML, dvi or postscript.
+@@ -998,7 +998,7 @@ Emacs, standalone info, or converted to HTML, dvi or postscript.
  ** Fixed a long-standing bug, so that Wget now works over SLIP
  connections.
  
@@ -21,7 +21,7 @@ index 5e01a3c..88c7073 100644
  course :-)
  
 diff --git a/README b/README
-index 61cb2aa..6c9b2fa 100644
+index 692e1c6..38231c9 100644
 --- a/README
 +++ b/README
 @@ -33,7 +33,7 @@ for socks.
@@ -78,10 +78,10 @@ index 3c7f2f4..521ef16 100644
  ## functionality, and make it behave contrary to the documentation:
  ##
 diff --git a/doc/wget.info b/doc/wget.info
-index 985b614..3e9b771 100644
+index 40ce0d4..89c6652 100644
 --- a/doc/wget.info
 +++ b/doc/wget.info
-@@ -113,7 +113,7 @@ retrieval through HTTP proxies.
+@@ -109,7 +109,7 @@ retrieval through HTTP proxies.
     • Most of the features are fully configurable, either through command
       line options, or via the initialization file ‘.wgetrc’ (*note
       Startup File::).  Wget allows you to define “global” startup files
@@ -90,7 +90,7 @@ index 985b614..3e9b771 100644
       also specify the location of a startup file with the –config
       option.  To disable the reading of config files, use –no-config.
       If both –config and –no-config are given, –no-config is ignored.
-@@ -2814,8 +2814,8 @@ File: wget.info,  Node: Wgetrc Location,  Next: Wgetrc Syntax,  Prev: Startup Fi
+@@ -2825,8 +2825,8 @@ File: wget.info,  Node: Wgetrc Location,  Next: Wgetrc Syntax,  Prev: Startup Fi
  ===================
  
  When initializing, Wget will look for a “global” startup file,
@@ -101,7 +101,7 @@ index 985b614..3e9b771 100644
  there, if it exists.
  
     Then it will look for the user’s file.  If the environmental variable
-@@ -2826,7 +2826,7 @@ further attempts will be made.
+@@ -2837,7 +2837,7 @@ further attempts will be made.
  
     The fact that user’s settings are loaded after the system-wide ones
  means that in case of collision user’s wgetrc _overrides_ the
@@ -110,7 +110,7 @@ index 985b614..3e9b771 100644
  admins, away!
  
  
-@@ -3369,7 +3369,7 @@ its line.
+@@ -3380,7 +3380,7 @@ its line.
       ## Or online here:
       ##   https://www.gnu.org/software/wget/manual/wget.html#Startup-File
       ##
@@ -119,7 +119,7 @@ index 985b614..3e9b771 100644
       ## (global, for all users) or $HOME/.wgetrc (for a single user).
       ##
       ## To use the settings in this file, you will have to uncomment them,
-@@ -3381,7 +3381,7 @@ its line.
+@@ -3392,7 +3392,7 @@ its line.
  
  
       ##
@@ -129,10 +129,10 @@ index 985b614..3e9b771 100644
       ## functionality, and make it behave contrary to the documentation:
       ##
 diff --git a/doc/wget.texi b/doc/wget.texi
-index 31aef52..cffdced 100644
+index eaf6b38..608d008 100644
 --- a/doc/wget.texi
 +++ b/doc/wget.texi
-@@ -191,7 +191,7 @@ gauge can be customized to your preferences.
+@@ -190,7 +190,7 @@ gauge can be customized to your preferences.
  Most of the features are fully configurable, either through command line
  options, or via the initialization file @file{.wgetrc} (@pxref{Startup
  File}).  Wget allows you to define @dfn{global} startup files
@@ -141,7 +141,7 @@ index 31aef52..cffdced 100644
  specify the location of a startup file with the --config option.
  To disable the reading of config files, use --no-config.
  If both --config and --no-config are given, --no-config is ignored.
-@@ -200,7 +200,7 @@ If both --config and --no-config are given, --no-config is ignored.
+@@ -199,7 +199,7 @@ If both --config and --no-config are given, --no-config is ignored.
  @ignore
  @c man begin FILES
  @table @samp
@@ -150,7 +150,7 @@ index 31aef52..cffdced 100644
  Default location of the @dfn{global} startup file.
  
  @item .wgetrc
-@@ -3143,8 +3143,8 @@ commands.
+@@ -3154,8 +3154,8 @@ commands.
  @cindex location of wgetrc
  
  When initializing, Wget will look for a @dfn{global} startup file,
@@ -161,7 +161,7 @@ index 31aef52..cffdced 100644
  from there, if it exists.
  
  Then it will look for the user's file.  If the environmental variable
-@@ -3155,7 +3155,7 @@ If @code{WGETRC} is not set, Wget will try to load @file{$HOME/.wgetrc}.
+@@ -3166,7 +3166,7 @@ If @code{WGETRC} is not set, Wget will try to load @file{$HOME/.wgetrc}.
  
  The fact that user's settings are loaded after the system-wide ones
  means that in case of collision user's wgetrc @emph{overrides} the

wget.spec

@@ -1,7 +1,7 @@
 Summary: A utility for retrieving files using the HTTP or FTP protocols
 Name: wget
-Version: 1.19.4
+Version: 1.19.5
-Release: 3%{?dist}
+Release: 1%{?dist}
 License: GPLv3+
 Group: Applications/Internet
 Url: http://www.gnu.org/software/wget/
@@ -77,6 +77,9 @@ fi
 %{_infodir}/*
 
 %changelog
+* Wed May 09 2018 Tomas Hozza <thozza@redhat.com> - 1.19.5-1
+- Update to 1.19.5 fixing CVE-2018-0494
+
 * Thu Apr 26 2018 Tomas Hozza <thozza@redhat.com> - 1.19.4-3
 - Added gcc as an explicit BuildRequires