[ubuntu/hardy-security] awstats, awstats (delayed) 6.7.dfsg-1ubuntu0.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Jan 24 14:04:05 UTC 2011
- Previous message: [ubuntu/hardy-security] mumble_1.1.3-0ubuntu2.1_hppa_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_lpia_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_powerpc_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_sparc_translations.tar.gz (delayed), mumble_1.1.3-0ubuntu2.1_ia64_translations.tar.gz, mumble, mumble_1.1.3-0ubuntu2.1_i386_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_amd64_translations.tar.gz 1.1.3-0ubuntu2.1 (Accepted)
- Next message: [ubuntu/hardy-security] hplip_2.8.2-0ubuntu8.2_lpia_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_amd64_translations.tar.gz, hplip, hplip_2.8.2-0ubuntu8.2_powerpc_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_sparc_translations.tar.gz (delayed), hplip_2.8.2-0ubuntu8.2_hppa_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_i386_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_ia64_translations.tar.gz 2.8.2-0ubuntu8.2 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
awstats (6.7.dfsg-1ubuntu0.2) hardy-security; urgency=low
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Date: Tue, 11 Jan 2011 17:39:15 -0600
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/awstats/6.7.dfsg-1ubuntu0.2
-------------- next part --------------
Format: 1.7
Date: Tue, 11 Jan 2011 17:39:15 -0600
Source: awstats
Binary: awstats
Architecture: source
Version: 6.7.dfsg-1ubuntu0.2
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
awstats - powerful and featureful web server log analyzer
Changes:
awstats (6.7.dfsg-1ubuntu0.2) hardy-security; urgency=low
.
* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
- debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
name in wwwroot/cgi-bin/awstats.pl.
- CVE-2010-4369
Files:
492ba4f3e2f2ffe51aa9a97fca7783c6 1620 web optional awstats_6.7.dfsg-1ubuntu0.2.dsc
4776192ee160583ce30b21f5fbe66003 23771 web optional awstats_6.7.dfsg-1ubuntu0.2.diff.gz
Original-Maintainer: Debian AWStats Team <pkg-awstats-devel at lists.alioth.debian.org>
- Previous message: [ubuntu/hardy-security] mumble_1.1.3-0ubuntu2.1_hppa_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_lpia_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_powerpc_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_sparc_translations.tar.gz (delayed), mumble_1.1.3-0ubuntu2.1_ia64_translations.tar.gz, mumble, mumble_1.1.3-0ubuntu2.1_i386_translations.tar.gz, mumble_1.1.3-0ubuntu2.1_amd64_translations.tar.gz 1.1.3-0ubuntu2.1 (Accepted)
- Next message: [ubuntu/hardy-security] hplip_2.8.2-0ubuntu8.2_lpia_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_amd64_translations.tar.gz, hplip, hplip_2.8.2-0ubuntu8.2_powerpc_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_sparc_translations.tar.gz (delayed), hplip_2.8.2-0ubuntu8.2_hppa_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_i386_translations.tar.gz, hplip_2.8.2-0ubuntu8.2_ia64_translations.tar.gz 2.8.2-0ubuntu8.2 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Hardy-changes
mailing list