package: awstats
tags: security
The stable branch of awstats-6.4-1 still contains the security
vulnerability CAN-2005-1527 (arbitrary command injection).
I was under the impression fixes to security bugs such as CAN-2005-1527
would automatically be fixed in the stable branch by simply performing
apt-get update && apt-get upgrade periodically. My sincere apologies if
this is an incorrect understanding of keeping Debian stable
automatically up-to-date with the latest security fixes.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
