-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 03 Dec 2008 09:34:38 +0100
Source: awstats
Binary: awstats
Architecture: source all
Version: 6.5+dfsg-1+etch1
Distribution: stable-security
Urgency: high
Maintainer: Debian AWStats Team <pkg-awstats-devel@lists.alioth.debian.org>
Changed-By: Florian Weimer <fw@deneb.enyo.de>
Description:
awstats - powerful and featureful web server log analyzer
Changes:
awstats (6.5+dfsg-1+etch1) stable-security; urgency=high
.
* Strip '"' characters during URL decoding, fixing a cross-site
scripting attack (CVE-2008-3714).
Files:
2fd97dfcfcbf48cbe0e4a1a431cb43bd 1079 web optional awstats_6.5+dfsg-1+etch1.dsc
af6cbfbf470eb45f5238501813d6d1c6 1041837 web optional awstats_6.5+dfsg.orig.tar.gz
bbe38406f0402fd5b7be2d0a427223c8 20369 web optional awstats_6.5+dfsg-1+etch1.diff.gz
878a4f0ab2ccb36c324c0c171a6a39b5 837326 web optional awstats_6.5+dfsg-1+etch1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJJNlJqAAoJEL97/wQC1SS+tZsIAK3oDUKG+SVl53rAxbfIXyOG
MFGUMv0mU4LIX2kAeMzFW7SaqntBcGl2gFf42jmgr2MYxDo1Kyoz3amS849TEtcL
o+H3H501FHYA0DkSyG8fX0YsdizrWVVequ/RjPwfLIeNLLZvbnVvp31sYsg1az2K
By6/pmrxH530lxQnH1F3wXKt/r0G5Fbz6qgzR3oiJEyfcX3jX6fsxndG2dn4sOXY
cD+n34t5l0a2Tvk6kF3o4L2BeXv6rrqV/vcMMeXSryz7CRZj2YyKkrZ2zOpVn858
pbtnx8TXSe6xlTxR1ooRunm4LyE+WHfvMgSuIvJFydoBhxveEsbyMum+keWbIIg=
=hQpu
-----END PGP SIGNATURE-----
Accepted:
awstats_6.5+dfsg-1+etch1.diff.gz
to pool/main/a/awstats/awstats_6.5+dfsg-1+etch1.diff.gz
awstats_6.5+dfsg-1+etch1.dsc
to pool/main/a/awstats/awstats_6.5+dfsg-1+etch1.dsc
awstats_6.5+dfsg-1+etch1_all.deb
to pool/main/a/awstats/awstats_6.5+dfsg-1+etch1_all.deb
