>Number:         19103
>Category:       pkg
>Synopsis:       Bug in 'download-vulnerability-list' of 'audit-packages-1.14'
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    pkg-manager
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Tue Nov 19 00:56:00 PST 2002
>Closed-Date:
>Last-Modified:
>Originator:     Oleg Gritsinevich
>Release:        1.5.2 release with 1.5.3 kernel
>Organization:
JV Infocom
>Environment:
NetBSD mikasa.ukrpack.net 1.5.3 NetBSD 1.5.3 (MY-MIKASA4) #0: Wed Oct 23 19:25:14 EEST 2002     oleg@mikasa.ukrpack.net:/usr/src/sys/arch/alpha/compile/MY-MIKASA4 alpha
>Description:
'download-vulnerability-list' writes into /usr/pkgsrc_distfiles/vulnerabilities wget's messages instead of true 'vulnerabilities' contents.
>How-To-Repeat:
Just run /usr/pkg/sbin/download-vulnerability-list and check contents of /usr/pkgsrc_distfiles/vulnerabilities
>Fix:
It was just typo, so fix is trivial:
--- download-vulnerability-list.old     Tue Nov 19 10:53:15 2002
+++ download-vulnerability-list Tue Nov 19 10:26:30 2002
@@ -10,7 +10,7 @@
 NEW_VUL_LIST=/usr/pkgsrc_distfiles/vulnerabilities.$$
 EXIST_VUL_LIST=/usr/pkgsrc_distfiles/vulnerabilities
 
-/usr/pkg/bin/wget -o ${NEW_VUL_LIST} ${VUL_SOURCE}
+/usr/pkg/bin/wget -O ${NEW_VUL_LIST} ${VUL_SOURCE}
 existsize=0
 newsize=0
 if [ -f ${EXIST_VUL_LIST} ]; then

>Release-Note:
>Audit-Trail:
>Unformatted: