Debian
logwatch package

Branches for Squeeze

Name		Status	Last Modified	Last Commit
lp:debian/squeeze/logwatch		1 Development	2011-03-02 08:57:07 UTC 2011-03-02	7. * CVE-2011-1018: Remote code executio... Author: Willi Mann Revision Date: 2011-03-02 08:57:07 UTC * CVE-2011-1018: Remote code execution by combination of - Logfile name by attacker's choice (e.g. samba log files) and - Missing sanitization of logfile names in system() call. - fix by encapsulating logfile names in ' and disallowing '. Taken from upstream. - closes: #615995