[ubuntu/maverick-security] awstats, awstats (delayed) 6.9.5~dfsg-3ubuntu0.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Jan 24 14:03:30 UTC 2011 

awstats (6.9.5~dfsg-3ubuntu0.1) maverick-security; urgency=low

  * SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
    - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
      name in wwwroot/cgi-bin/awstats.pl.
    - CVE-2010-4369

Date: Tue, 11 Jan 2011 17:00:42 -0600
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/awstats/6.9.5~dfsg-3ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Tue, 11 Jan 2011 17:00:42 -0600
Source: awstats
Binary: awstats
Architecture: source
Version: 6.9.5~dfsg-3ubuntu0.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 awstats    - powerful and featureful web server log analyzer
Changes: 
 awstats (6.9.5~dfsg-3ubuntu0.1) maverick-security; urgency=low
 .
   * SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
     - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
       name in wwwroot/cgi-bin/awstats.pl.
     - CVE-2010-4369
Checksums-Sha1: 
 f1ee46a128038f76910ce77ffa434d6a794b8e18 2184 awstats_6.9.5~dfsg-3ubuntu0.1.dsc
 609cdfe54e7a4ab6e3631750e3720d50d5f64f74 39502 awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Checksums-Sha256: 
 20abe18a9e046674be6f2b26b13d9d07141587cf801a092a4c819b4d9c545c93 2184 awstats_6.9.5~dfsg-3ubuntu0.1.dsc
 01b9a36061fdf7a422a3ba8ba097d6e63b25d3063498a7e0a416d09650b7cc64 39502 awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Files: 
 8ea4ef44ccb7af39a7cbf04505e05f6f 2184 web optional awstats_6.9.5~dfsg-3ubuntu0.1.dsc
 4b1e14b2bdf3439924c392b6a18d8cd6 39502 web optional awstats_6.9.5~dfsg-3ubuntu0.1.debian.tar.gz
Original-Maintainer: Debian AWStats Team <pkg-awstats-devel at lists.alioth.debian.org>

More information about the Maverick-changes mailing list