Bug#350046: security fix and apachetop 0.12.6 available
On Thu, Jan 26, 2006 at 10:26:35PM +0100, Sven Koch wrote: > Apachetop 0.12.6 is available at > http://www.webta.org/projects/apachetop/wiki/Download > > >From its changelog: > v0.12.6 (27th October, 2005) > * fixed security issue which described at CVE-2005-2660 > > http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2660 Thanks for the report. We already fixed that bug in the code in Apachetop 0.12.5-3, quoting the changelog: -- apachetop (0.12.5-3) unstable; urgency=high * Fix insecure temporary file usage. [CAN-2005-2660] * Support "gamin" in addition to "fam". (Closes: #329367) * Attempt to open both /var/log/apache2/access.log and /var/log/apache/access.log when given no filename as input. (Closes: #319272) -- Steve Kemp <[EMAIL PROTECTED]> Fri, 30 Sep 2005 13:59:09 + -- I'll definitely make a new upload with the upstream release, but the security issue is already fixed. (We even released a DSA for it: http://www.debian.org/security/2005/dsa-839 ) Steve -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#350046: security fix and apachetop 0.12.6 available
Package: apachetop Version: 0.12.5-7 Severity: normal Apachetop 0.12.6 is available at http://www.webta.org/projects/apachetop/wiki/Download >From its changelog: v0.12.6 (27th October, 2005) * fixed security issue which described at CVE-2005-2660 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2660 -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.1-sdinet5-aurora Locale: LANG=en_US.ISO-8859-1, LC_CTYPE=de_DE.ISO-8859-1 (charmap=ISO-8859-1) Versions of packages apachetop depends on: ii fam 2.7.0-9File Alteration Monitor ii libadns1 1.1-4 Asynchronous-capable DNS client li ii libc6 2.3.5-12 GNU C Library: Shared libraries an ii libfam0 2.7.0-9Client library to control the FAM ii libgcc1 1:4.0.2-7 GCC support library ii libncurses5 5.5-1 Shared libraries for terminal hand ii libreadline5 5.1-5 GNU readline and history libraries ii libstdc++64.0.2-7The GNU Standard C++ Library v3 apachetop recommends no packages. -- debconf-show failed -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]