- Committer: Bazaar Package Importer
- Date: 2006-10-06 12:53:15 UTC
- Revision ID: james.westby@ubuntu.com-20061006125315-58t3nomc33x7vono
* SECURITY UPDATE: Fix XSS vulnerability and full path exposure.
* Add 'debian/patches/05_backport_6.6_xss-fixes.patch' to filter XSS and
adjust error message reports. Backported from upstream changes.
* References
CVE-2006-3681 CVE-2006-3682
http://awstats.cvs.sourceforge.net/awstats/awstats/wwwroot/cgi-bin/awstats.pl?r1=1.867&r2=1.871
* Add 'debian/patches/05_backport_6.6_xss-fixes.patch' to filter XSS and
adjust error message reports. Backported from upstream changes.
* References
CVE-2006-3681 CVE-2006-3682
http://awstats.cvs.sourceforge.net/awstats/awstats/wwwroot/cgi-bin/awstats.pl?r1=1.867&r2=1.871
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
debian
|
2 | 20 years ago | Bazaar Package Importer | Really fix bug#247265. Really closes: Bug#247265 ( |
|
||
|
docs
|
1 | 20 years ago | Bazaar Package Importer | Import upstream version 6.0 |
|
||
|
tools
|
1 | 20 years ago | Bazaar Package Importer | Import upstream version 6.0 |
|
||
|
wwwroot
|
1 | 20 years ago | Bazaar Package Importer | Import upstream version 6.0 |
|
||
README.TXT |
4 | 18 years ago | Bazaar Package Importer | * SECURITY UPDATE: Fix arbitrary command injection | 6.5 KB |
|
|