[ubuntu/bionic-proposed] awstats 7.6+dfsg-1ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Fri Jan 5 16:03:12 UTC 2018
awstats (7.6+dfsg-1ubuntu1) bionic; urgency=medium
* SECURITY UPDATE: code execution via path traversal flaws
- debian/patches/CVE-2017-1000501-1.patch: sanitize values in
wwwroot/cgi-bin/awstats.pl.
- debian/patches/CVE-2017-1000501-2.patch: sanitize more values in
wwwroot/cgi-bin/awstats.pl.
- CVE-2017-1000501
Date: Fri, 05 Jan 2018 07:35:35 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/awstats/7.6+dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 05 Jan 2018 07:35:35 -0500
Source: awstats
Binary: awstats
Architecture: source
Version: 7.6+dfsg-1ubuntu1
Distribution: bionic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
awstats - powerful and featureful web server log analyzer
Changes:
awstats (7.6+dfsg-1ubuntu1) bionic; urgency=medium
.
* SECURITY UPDATE: code execution via path traversal flaws
- debian/patches/CVE-2017-1000501-1.patch: sanitize values in
wwwroot/cgi-bin/awstats.pl.
- debian/patches/CVE-2017-1000501-2.patch: sanitize more values in
wwwroot/cgi-bin/awstats.pl.
- CVE-2017-1000501
Checksums-Sha1:
2cc963c91b8a1d509fcf16ba866db44644965098 1975 awstats_7.6+dfsg-1ubuntu1.dsc
2e508d38beed2efab2d3c580cd3034839d2c307f 37848 awstats_7.6+dfsg-1ubuntu1.debian.tar.xz
385cd6dce4a2fd40d327b3d4fb261c4ef7a736cc 9797 awstats_7.6+dfsg-1ubuntu1_source.buildinfo
Checksums-Sha256:
0927f500fcbc64163d80f631b4c8bf99e07ceaceefd30153d42a83859bfea467 1975 awstats_7.6+dfsg-1ubuntu1.dsc
b3fc5947da211159806964fcdfab1b06eeb599acf95ab0edbaa40872c802efd2 37848 awstats_7.6+dfsg-1ubuntu1.debian.tar.xz
30ad1c65e70d2ecae29f5f61efb11219b0e2e57376d9fdc862f95f13fa424d53 9797 awstats_7.6+dfsg-1ubuntu1_source.buildinfo
Files:
ee99cb1c12d4a3ed77b10ea7160b3d72 1975 web optional awstats_7.6+dfsg-1ubuntu1.dsc
88bcff8ce2deae845fa5e06adfb2ec2e 37848 web optional awstats_7.6+dfsg-1ubuntu1.debian.tar.xz
22804217eb8d28d4f7ec15a414898cd4 9797 web optional awstats_7.6+dfsg-1ubuntu1_source.buildinfo
Original-Maintainer: Sergey B Kirpichev <skirpichev at gmail.com>
-----BEGIN PGP SIGNATURE-----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=Eycz
-----END PGP SIGNATURE-----
More information about the Bionic-changes
mailing list