[ubuntu/lucid-security] awstats, awstats (delayed) 6.9~dfsg-1ubuntu3.10.04.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Jan 24 14:03:41 UTC 2011 

awstats (6.9~dfsg-1ubuntu3.10.04.1) lucid-security; urgency=low

  * SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
    - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
      name in wwwroot/cgi-bin/awstats.pl.
    - CVE-2010-4369

Date: Tue, 11 Jan 2011 17:05:56 -0600
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Develoers <ubuntu-devel at lists.ubunutu.com>
https://launchpad.net/ubuntu/lucid/+source/awstats/6.9~dfsg-1ubuntu3.10.04.1
-------------- next part --------------
Format: 1.8
Date: Tue, 11 Jan 2011 17:05:56 -0600
Source: awstats
Binary: awstats
Architecture: source
Version: 6.9~dfsg-1ubuntu3.10.04.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Core Develoers <ubuntu-devel at lists.ubunutu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 awstats    - powerful and featureful web server log analyzer
Changes: 
 awstats (6.9~dfsg-1ubuntu3.10.04.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
     - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
       name in wwwroot/cgi-bin/awstats.pl.
     - CVE-2010-4369
Checksums-Sha1: 
 fa3b53c078517f0fb550a20e45cbb8eaa76405f8 2202 awstats_6.9~dfsg-1ubuntu3.10.04.1.dsc
 7afdd754b08ffc24f2d9a88fb320fc80afc59d39 45789 awstats_6.9~dfsg-1ubuntu3.10.04.1.diff.gz
Checksums-Sha256: 
 a496105d51efe8048ad7c81bd408523ea3fd365d2f6fccd37a9e87d5ec516674 2202 awstats_6.9~dfsg-1ubuntu3.10.04.1.dsc
 8864fcb4d1c514eee4997c0ec38c2943321b5fb1b5830393c8556a19a39a2e6f 45789 awstats_6.9~dfsg-1ubuntu3.10.04.1.diff.gz
Files: 
 2536cf6fe0fbec527f16cf6e5e3ada47 2202 web optional awstats_6.9~dfsg-1ubuntu3.10.04.1.dsc
 f21c60b02413fc47263702e37bbd317c 45789 web optional awstats_6.9~dfsg-1ubuntu3.10.04.1.diff.gz
Original-Maintainer: Debian AWStats Team <pkg-awstats-devel at lists.alioth.debian.org>

More information about the Lucid-changes mailing list