Bug 76983

Summary: Fix security vulnerabilities in awstats < 6.3
Product: Ports & Packages Reporter: Jacques Marneweck <jacques>
Component: Individual Port(s)Assignee: Pav Lucistnik <pav>
Status: Closed FIXED    
Severity: Affects Only Me CC: jacques
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
awstats.6.3.patch none

Description Jacques Marneweck 2005-02-01 23:00:42 UTC 
Versions of awstats prior to 6.3 contain various security vulnerabilities,
and is listed in the VuXML and needs to be upgraded to 6.3 to close the
three holes that have been reported.

Apparently people can run shell commands in certain circumstances.

Fix: Upgrade to awstats 6.3
Comment 1 Pav Lucistnik freebsd_committer freebsd_triage 2005-02-02 12:58:25 UTC 
State Changed
From-To: open->closed

Duplicate of ports/76735. Please see 
http://www.freebsd.org/cgi/query-pr.cgi?q=76735 
for further debate. Thank you for your work anyway.
Comment 2 Pav Lucistnik freebsd_committer freebsd_triage 2005-02-02 12:58:25 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->pav

Watch