awstats 6.4-1ubuntu1 source package in Ubuntu
Changelog
awstats (6.4-1ubuntu1) breezy; urgency=low
* SECURITY UPDATE: Fix arbitrary command injection.
* Add debian/patches/03_remove_eval.patch:
- Replace all eval() calls for dynamically constructed function names with
soft references. This fixes arbitrary command injection with specially
crafted referer URLs which contain Perl code.
- Patch taken from upstream CVS, and contained in 6.5 release.
* References:
CAN-2005-1527
http://www.idefense.com/application/poi/display?id=290&type=vulnerabilities
-- Martin Pitt <email address hidden> Thu, 11 Aug 2005 18:23:09 +0200
Upload details
- Uploaded by:
- Ubuntu Archive Auto-Sync
- Uploaded to:
- Breezy
- Original maintainer:
- Jonas Smedegaard
- Architectures:
- all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| awstats_6.4-1ubuntu1.dsc | 591 bytes | 779cce9941f6ae636ffe95958a94b4bd1907a4f794c72e3974b7fa5efc1bd9f7 |
| awstats_6.4.orig.tar.gz | 896.9 KiB | 94ec0963dd88a4995ae63be675936da9d3dfaed0c0b0155c5c0400c989b6d294 |
| awstats_6.4-1ubuntu1.diff.gz | 17.8 KiB | fc56c424ce39acd84444e21f5e97c1fd2ee97c22b06f80008b7384a72ac902bd |
No changes file available.
Binary packages built by this source
- awstats: No summary available for awstats in ubuntu breezy.
No description available for awstats in ubuntu breezy.
