You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa awstats

Sigurnosni nedostatak programskog paketa awstats

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2018-17ba1a2393
2018-01-16 14:14:36.364123
——————————————————————————–

Name : awstats
Product : Fedora 26
Version : 7.6
Release : 4.fc26
URL : http://awstats.sourceforge.net
Summary : Advanced Web Statistics
Description :
Advanced Web Statistics is a powerful and featureful tool that generates
advanced web server graphic statistics. This server log analyzer works
from command line or as a CGI and shows you all information your log contains,
in graphical web pages. It can analyze a lot of web/wap/proxy servers like
Apache, IIS, Weblogic, Webstar, Squid, … but also mail or ftp servers.

This program can measure visits, unique vistors, authenticated users, pages,
domains/countries, OS busiest times, robot visits, type of files, search
engines/keywords used, visits duration, HTTP errors and more…
Statistics can be updated from a browser or your scheduler.
The program also supports virtual servers, plugins and a lot of features.

With the default configuration, the statistics are available:
http://localhost/awstats/awstats.pl

——————————————————————————–
Update Information:

Security fix for CVE-2017-1000501
——————————————————————————–
References:

[ 1 ] Bug #1529349 – CVE-2017-1000501 awstat: Two path traversal issues in awstat.pl
https://bugzilla.redhat.com/show_bug.cgi?id=1529349
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade awstats’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

AutorDanijel Kozinovic
Cert idNCERT-REF-2018-01-0111-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa mupdf

Otkriven je sigurnosni nedostatak u programskom paketu mupdf za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izvođenje napada uskraćivanjem...

Close