awstats: fix appears still incomplete

Sylvain Beucler Wed, 09 Dec 2020 06:48:46 -0800


Sylvain Beucler pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
d8c8e482 by Sylvain Beucler at 2020-12-09T15:47:10+01:00
CVE-2020-29600/awstats: fix appears still incomplete

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -620,6 +620,7 @@ CVE-2020-29600 (In AWStats through 7.7, 
cgi-bin/awstats.pl?config= accepts an ab
        - awstats <unfixed> (bug #891469)
        NOTE: https://github.com/eldy/awstats/issues/90
        NOTE: 
https://github.com/eldy/awstats/commit/d4d815d0caae3dbae83ac70a1ae4581bd57cf376
+       NOTE: https://github.com/eldy/awstats/issues/195 (another unfixed 
vector)
 CVE-2020-29599 (ImageMagick before 6.9.11-40 and 7.x before 7.0.10-40 
mishandles the - ...)
        TODO: check
 CVE-2020-29598



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8c8e482c6b0d13ffd19cd54d973c4c420967ad2

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d8c8e482c6b0d13ffd19cd54d973c4c420967ad2
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] CVE-2020-29600/awstats: fix appears still incomplete

Reply via email to