GNU Wget through 1.25.0, fixed in commit c2640fe,...
Moderate severity
Unreviewed
Published
Jul 7, 2026
to the GitHub Advisory Database
•
Updated Jul 7, 2026
Description
Published by the National Vulnerability Database
Jul 7, 2026
Published to the GitHub Advisory Database
Jul 7, 2026
Last updated
Jul 7, 2026
GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability in the convert_fname() function within src/url.c that allows remote attackers to trigger memory corruption through a server-supplied filename requiring character set conversion. When the output buffer is too small during iconv E2BIG reallocation, the reallocation logic miscalculates the remaining space, leading to a heap buffer overflow that can be exploited via a maliciously crafted server response.
References