awstats (6.9~dfsg-1ubuntu3.9.10.1) karmic-security; urgency=low
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Date: Tue, 11 Jan 2011 17:08:05 -0600
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Develoers <[email protected]>
https://launchpad.net/ubuntu/karmic/+source/awstats/6.9~dfsg-1ubuntu3.9.10.1
Format: 1.8
Date: Tue, 11 Jan 2011 17:08:05 -0600
Source: awstats
Binary: awstats
Architecture: source
Version: 6.9~dfsg-1ubuntu3.9.10.1
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Develoers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
awstats - powerful and featureful web server log analyzer
Changes:
awstats (6.9~dfsg-1ubuntu3.9.10.1) karmic-security; urgency=low
.
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Checksums-Sha1:
84105221dcb89d51f52ce98dd9d207fe75e60e07 2198
awstats_6.9~dfsg-1ubuntu3.9.10.1.dsc
ba5cb3cd696e484d699e6b240426e7e3967e2440 45789
awstats_6.9~dfsg-1ubuntu3.9.10.1.diff.gz
Checksums-Sha256:
92324c36030cdcc70b38e4cb10da3cda0c9485e18bdb6e75d41cba728d13ef77 2198
awstats_6.9~dfsg-1ubuntu3.9.10.1.dsc
d0f0385be0cdf84c769ecfe15ab18dea576a48bac73655591d7c5d1257975dbf 45789
awstats_6.9~dfsg-1ubuntu3.9.10.1.diff.gz
Files:
82f778a33dc5bc99d38e270902caf233 2198 web optional
awstats_6.9~dfsg-1ubuntu3.9.10.1.dsc
b44d3b7fcf2d4bc5a0eeda3dec3fc412 45789 web optional
awstats_6.9~dfsg-1ubuntu3.9.10.1.diff.gz
Original-Maintainer: Debian AWStats Team
<[email protected]>
--
Karmic-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/karmic-changes
