← Back to branch summary

~ubuntu-branches/ubuntu/dapper/awstats/dapper-security

« back to all changes in this revision

Viewing changes to docs/pad_awstats.xml

  • Committer: Bazaar Package Importer
  • Author(s): Jonas Smedegaard
  • Date: 2005-02-05 17:13:48 UTC
  • mfrom: (1.1.1 upstream)
  • Revision ID: james.westby@ubuntu.com-20050205171348-h8uy32bhbcnhciie
Tags: 6.3-1
http://bugs.debian.org/293702
http://bugs.debian.org/293668
http://bugs.debian.org/291064
http://bugs.debian.org/294488
* New upstream release. Closes: bug#293702, #293668 (thanks to Nelson
  A. de Oliveira <naoliv@biolinux.df.ibilce.unesp.br>).
  + Includes upstream fix for security bug fixed in 6.2-1.1.
  + Includes upstream fix for most of security bug fixed in 6.2-1.1.
* Acknowledge NMUs. Closes: bug#291064, #294488 (thanks to Martin
  Schulze <joey@infodrom.org>, Martin Pitt <mpitt@debian.org>, Ubuntu,
  Joey Hess <joeyh@debian.org>, Frank Lichtenheld <djpig@debian.org> and Steve
  Langasek <vorlon@debian.org>).
* Include patch for last parts of security bug fixed in 6.2-1.1:
  01_sanitize_more.patch.
* Patch (02) to include snapshot of recent development:
  + Fix security hole that allowed a user to read log file content
    even when plugin rawlog was not enabled.
  + Fix a possible use of AWStats for a DoS attack.
  + configdir option was broken on windows servers.
  + DebugMessages is by default set to 0 for security reasons.
  + Minor fixes.
* References:
  CAN-2005-0435 - read server logs via loadplugin and pluginmode
  CAN-2005-0436 - code injection via PluginMode
  CAN-2005-0437 - directory traversal via loadplugin
  CAN-2005-0438 - information leak via debug

Show diffs side-by-side

added added

removed removed

Lines of Context:
docs/pad_awstats.xml
1
 
<?xml version="1.0" ?>
 
1
<?xml version="1.0" encoding="Windows-1252" ?>
2
2
<XML_DIZ_INFO>
3
3
<MASTER_PAD_VERSION_INFO>
4
4
    <MASTER_PAD_VERSION>1.15</MASTER_PAD_VERSION>
33
33
</Company_Info>
34
34
<Program_Info>
35
35
        <Program_Name>AWStats</Program_Name>
36
 
        <Program_Version>6.0</Program_Version>
 
36
        <Program_Version>6.3</Program_Version>
37
37
        <Program_Release_Month>01</Program_Release_Month>
38
 
        <Program_Release_Day>04</Program_Release_Day>
39
 
        <Program_Release_Year>2004</Program_Release_Year>
 
38
        <Program_Release_Day>28</Program_Release_Day>
 
39
        <Program_Release_Year>2005</Program_Release_Year>
40
40
        <Program_Cost_Dollars>0</Program_Cost_Dollars>
41
41
        <Program_Cost_Other_Code />
42
42
        <Program_Cost_Other>0</Program_Cost_Other>
46
46
        <Program_OS_Support>Win95,Win98,WinME,WinNT 4.x,WinXP,Windows2000,Unix,Linux,OS/2,OS/2 Warp,OS/2 Warp 4,MAC 68k,Mac PPC</Program_OS_Support>
47
47
        <Program_Language>English,Spanish,French,German,Italian,Japanese,ChineseSimplified,ChineseTraditional,Russian</Program_Language>
48
48
<File_Info>
49
 
        <Filename_Versioned>awstats.zip</Filename_Versioned>
50
 
        <Filename_Previous>awstats.zip</Filename_Previous>
51
 
        <Filename_Generic>awstats.zip</Filename_Generic>
 
49
        <Filename_Versioned>awstats-63.zip</Filename_Versioned>
 
50
        <Filename_Previous>awstats-62.zip</Filename_Previous>
 
51
        <Filename_Generic>awstats-.zip</Filename_Generic>
52
52
        <Filename_Long>awstats.zip</Filename_Long>
53
 
        <File_Size_Bytes>936612</File_Size_Bytes>
54
 
        <File_Size_K>915</File_Size_K>
55
 
        <File_Size_MB>0.91</File_Size_MB>
 
53
        <File_Size_Bytes>1016660</File_Size_Bytes>
 
54
        <File_Size_K>993</File_Size_K>
 
55
        <File_Size_MB>0.99</File_Size_MB>
56
56
    </File_Info>
57
57
<Expire_Info>
58
58
        <Has_Expire_Info>N</Has_Expire_Info>
97
97
    </Application_URLs>
98
98
<Download_URLs>
99
99
        <Primary_Download_URL>http://awstats.sourceforge.net/files/awstats.zip</Primary_Download_URL>
100
 
        <Secondary_Download_URL>http://prdownloads.sourceforge.net/awstats/awstats-60.zip</Secondary_Download_URL>
 
100
        <Secondary_Download_URL>http://prdownloads.sourceforge.net/awstats/awstats-62.zip</Secondary_Download_URL>
101
101
        <Additional_Download_URL_1 />
102
102
        <Additional_Download_URL_2 />
103
103
    </Download_URLs>