User: Password:
Subscribe / Log in / New account

Fedora alert FEDORA-2012-18423 (awstats)

Subject:  [SECURITY] Fedora 17 Update: awstats-7.0-9.fc17
Date:  Wed, 28 Nov 2012 11:37:19 +0000
Message-ID:  <>
Archive-link:  Article, Thread

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-18423 2012-11-17 23:19:21 -------------------------------------------------------------------------------- Name : awstats Product : Fedora 17 Version : 7.0 Release : 9.fc17 URL : Summary : Advanced Web Statistics Description : Advanced Web Statistics is a powerful and featureful tool that generates advanced web server graphic statistics. This server log analyzer works from command line or as a CGI and shows you all information your log contains, in graphical web pages. It can analyze a lot of web/wap/proxy servers like Apache, IIS, Weblogic, Webstar, Squid, ... but also mail or ftp servers. This program can measure visits, unique vistors, authenticated users, pages, domains/countries, OS busiest times, robot visits, type of files, search engines/keywords used, visits duration, HTTP errors and more... Statistics can be updated from a browser or your scheduler. The program also supports virtual servers, plugins and a lot of features. With the default configuration, the statistics are available: http://localhost/awstats/ -------------------------------------------------------------------------------- Update Information: added more hardening in parsing input data -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Petr Lautrbach <> 7.0-9 - fix potential XSS attacks - CVE-2012-4547 (#871159) -------------------------------------------------------------------------------- References: [ 1 ] Bug #871159 - CVE-2012-4547 awstats: potentially susceptible to XSS attacks -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update awstats' at the command line. For more information, refer to "Managing Software with yum", available at All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds