Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 22 Nov 2009 02:31:56 +0100
From: Craig <craig@...uarter.de>
To: OSS Security <oss-security@...ts.openwall.com>
Subject: CVE request: awstats

Hi,

I think there isn't a CVE for this issues - which was fixed in 6.95 -
yet (quote from http://awstats.sourceforge.net/docs/awstats_changelog.txt):

- Fix security in awredir.pl script by adding a security key required by
  default.
- Enhance security of parameter sanitizing function


best regards,

Craig

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.