Accepted awstats 6.7.dfsg-5.1 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 10 Dec 2008 13:05:43 +0100
Source: awstats
Binary: awstats
Architecture: source all
Version: 6.7.dfsg-5.1
Distribution: unstable
Urgency: high
Maintainer: Debian AWStats Team <pkg-awstats-devel@lists.alioth.debian.org>
Changed-By: Nico Golde <nion@debian.org>
Description:
awstats - powerful and featureful web server log analyzer
Closes: 495432
Changes:
awstats (6.7.dfsg-5.1) unstable; urgency=high
.
* Non-maintainer upload by the Security Team.
* Strip '"' characters during URL decoding, fixing a cross-site
scripting attack (CVE-2008-3714; CVE-2008-5080; Closes: #495432).
Checksums-Sha1:
c4ed7c46c73efd41d78f30af8be391ba8f34bab8 1380 awstats_6.7.dfsg-5.1.dsc
b449df588b5615fd33a6e44620d4c656975be0e1 29130 awstats_6.7.dfsg-5.1.diff.gz
071e21994b92e52a1e8f6ad7a99760d3752e2d26 918204 awstats_6.7.dfsg-5.1_all.deb
Checksums-Sha256:
05c73c405a42a2646955445e3550aba1d4903c2e0d255ab7305d44cef8394940 1380 awstats_6.7.dfsg-5.1.dsc
d31732f16cd6ae98e598f1b4c39ca167c91a94687cd61d58ee95aa9d14f61e51 29130 awstats_6.7.dfsg-5.1.diff.gz
1bb58502d311f4cd64a100f7166778f953acd77aa0d04ccbc5ba5ad53fa76f4f 918204 awstats_6.7.dfsg-5.1_all.deb
Files:
fd609d2b3421f32c316f0e3927960050 1380 web optional awstats_6.7.dfsg-5.1.dsc
e5e95b705a8208eeccdd1388c368301f 29130 web optional awstats_6.7.dfsg-5.1.diff.gz
087a9ed792c8f63afc7e18df0e0d4987 918204 web optional awstats_6.7.dfsg-5.1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkk/s8EACgkQHYflSXNkfP8pawCfVppoTuaEoEVdIDxQauxMc90X
GCYAoI/FdH5X4U+DNYhUIscRrmlIOzr4
=89Xg
-----END PGP SIGNATURE-----
Accepted:
awstats_6.7.dfsg-5.1.diff.gz
to pool/main/a/awstats/awstats_6.7.dfsg-5.1.diff.gz
awstats_6.7.dfsg-5.1.dsc
to pool/main/a/awstats/awstats_6.7.dfsg-5.1.dsc
awstats_6.7.dfsg-5.1_all.deb
to pool/main/a/awstats/awstats_6.7.dfsg-5.1_all.deb
Reply to: