awstats (6.9.5~dfsg-3ubuntu0.1) maverick-security; urgency=low
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Date: Tue, 11 Jan 2011 17:00:42 -0600
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/maverick/+source/awstats/6.9.5~dfsg-3ubuntu0.1
Format: 1.8
Date: Tue, 11 Jan 2011 17:00:42 -0600
Source: awstats
Binary: awstats
Architecture: source
Version: 6.9.5~dfsg-3ubuntu0.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
awstats - powerful and featureful web server log analyzer
Changes:
awstats (6.9.5~dfsg-3ubuntu0.1) maverick-security; urgency=low
.
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Checksums-Sha1:
f1ee46a128038f76910ce77ffa434d6a794b8e18 2184 awstats_6.9.5~dfsg-3ubuntu0.1.dsc
609cdfe54e7a4ab6e3631750e3720d50d5f64f74 39502
awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Checksums-Sha256:
20abe18a9e046674be6f2b26b13d9d07141587cf801a092a4c819b4d9c545c93 2184
awstats_6.9.5~dfsg-3ubuntu0.1.dsc
01b9a36061fdf7a422a3ba8ba097d6e63b25d3063498a7e0a416d09650b7cc64 39502
awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Files:
8ea4ef44ccb7af39a7cbf04505e05f6f 2184 web optional
awstats_6.9.5~dfsg-3ubuntu0.1.dsc
4b1e14b2bdf3439924c392b6a18d8cd6 39502 web optional
awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Original-Maintainer: Debian AWStats Team
<[email protected]>
--
Maverick-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/maverick-changes
