Ubuntu
awstats package

Branches for Dapper

Name Status Last Modified Last Commit
lp:ubuntu/dapper/awstats 1 Development 2009-06-15 18:55:42 UTC
6. * SECURITY UPDATE: Cross-site scripti...

Author: Martin Pitt
Revision Date: 2006-05-22 21:51:34 UTC

* SECURITY UPDATE: Cross-site scripting.
* debian/patches/1001_sanitize_more.patch:
  - Use the Sanitize function to filter out arbitrary HTML from 'diricons'
    parameter (analoguous to CVE-2006-1945, which is already fixed in this
    version).
  - Sanitize MigrateStats parameter (XSS if statistics updates are enabled).
    [CVE-2006-2237]
  - Patch from upstream CVS, taken from Debian's 6.5-2 version.
lp:ubuntu/dapper-security/awstats 1 Development 2011-01-11 17:42:12 UTC
10. * SECURITY UPDATE: directory traversa...

Author: Marc Deslauriers
Revision Date: 2011-01-11 17:42:12 UTC

* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
  - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
    name in wwwroot/cgi-bin/awstats.pl.
  - CVE-2010-4369
lp:ubuntu/dapper-updates/awstats 1 Development 2011-01-11 17:42:12 UTC
10. * SECURITY UPDATE: directory traversa...

Author: Marc Deslauriers
Revision Date: 2011-01-11 17:42:12 UTC

* SECURITY UPDATE: directory traversal via crafted LoadPlugin directory
  - debian/patches/3000_CVE-2010-4369.patch: properly sanitize plugin
    name in wwwroot/cgi-bin/awstats.pl.
  - CVE-2010-4369
13 of 3 results FirstPreviousNextLast