Red Hat Bugzilla – Bug 540404
Awstats: awredir.pl - require security key by default and enhance security of parameter sanitizing function
Last modified: 2010-03-22 14:53:46 EDT
Advanced Web Statistics (awstat) upstream has released new (6.95) version, addressing two security related issues. Quoting from awstats Changelog:
- Fix security in awredir.pl script by adding a security key required by
- Enhance security of parameter sanitizing function.
These issues affect the versions of the awstats package, as shipped
with Fedora releases of 10, 11, 12 and probably also as shipped
with Extra Packages for Enterprise Linux 5 (EPEL-5) project.
Please upgrade to new version.
awstats-6.95-1.fc12 has been submitted as an update for Fedora 12.
awstats-6.95-1.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report.