User: Password:
|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2012-18423 (awstats)

From:  updates@fedoraproject.org
To:  package-announce@lists.fedoraproject.org
Subject:  [SECURITY] Fedora 17 Update: awstats-7.0-9.fc17
Date:  Wed, 28 Nov 2012 11:37:19 +0000
Message-ID:  <20121128113719.0B6FF20B63@bastion01.phx2.fedoraproject.org>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-18423 2012-11-17 23:19:21 -------------------------------------------------------------------------------- Name : awstats Product : Fedora 17 Version : 7.0 Release : 9.fc17 URL : http://awstats.sourceforge.net Summary : Advanced Web Statistics Description : Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contains, in graphical web pages. It can analyze a lot of web/wap/proxy servers like Apache, IIS, Weblogic, Webstar, Squid, ... but also mail or ftp servers. This program can measure visits, unique vistors, authenticated users, pages, domains/countries, OS busiest times, robot visits, type of files, search engines/keywords used, visits duration, HTTP errors and more... Statistics can be updated from a browser or your scheduler. The program also supports virtual servers, plugins and a lot of features. With the default configuration, the statistics are available: http://localhost/awstats/awstats.pl -------------------------------------------------------------------------------- Update Information: added more hardening in parsing input data -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Petr Lautrbach <plautrba@redhat.com> 7.0-9 - fix potential XSS attacks - CVE-2012-4547 (#871159) -------------------------------------------------------------------------------- References: [ 1 ] Bug #871159 - CVE-2012-4547 awstats: potentially susceptible to XSS attacks https://bugzilla.redhat.com/show_bug.cgi?id=871159 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update awstats' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-...


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds