rpms/logwatch/devel logwatch-7.1-http2.patch, NONE, 1.1 logwatch.spec, 1.34, 1.35
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Mon Feb 20 08:42:40 UTC 2006
Author: varekova
Update of /cvs/dist/rpms/logwatch/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv4006
Modified Files:
logwatch.spec
Added Files:
logwatch-7.1-http2.patch
Log Message:
- fix http exploit problem #181802
logwatch-7.1-http2.patch:
http | 2 +-
1 files changed, 1 insertion(+), 1 deletion(-)
--- NEW FILE logwatch-7.1-http2.patch ---
--- logwatch-7.1/scripts/services/http.pom 2006-02-20 09:24:32.000000000 +0100
+++ logwatch-7.1/scripts/services/http 2006-02-20 09:26:01.498935680 +0100
@@ -263,7 +263,7 @@
# what to look for as an attack USE LOWER CASE!!!!!!
#
my @exploits = (
- 'null',
+ '^null$',
'/\.\./\.\./\.\./',
'\.\./\.\./config\.sys',
'/\.\./\.\./\.\./autoexec\.bat',
Index: logwatch.spec
===================================================================
RCS file: /cvs/dist/rpms/logwatch/devel/logwatch.spec,v
retrieving revision 1.34
retrieving revision 1.35
diff -u -r1.34 -r1.35
--- logwatch.spec 20 Jan 2006 12:03:31 -0000 1.34
+++ logwatch.spec 20 Feb 2006 08:42:37 -0000 1.35
@@ -1,7 +1,7 @@
Summary: A log file analysis program.
Name: logwatch
Version: 7.1
-Release: 7
+Release: 8
License: MIT
Group: Applications/System
URL: http://www.logwatch.org/
@@ -15,6 +15,7 @@
Patch8: logwatch-7.1-audit.patch
Patch9: logwatch-7.1-http.patch
Patch10: logwatch-7.1-pam_unix.patch
+Patch11: logwatch-7.1-http2.patch
Requires: textutils sh-utils grep mailx
BuildRoot: %{_tmppath}/logwatch-build
@@ -37,6 +38,7 @@
%patch8 -p1
%patch9 -p1
%patch10 -p1
+%patch11 -p1
%install
@@ -138,6 +140,9 @@
%doc License project/CHANGES project/TODO
%changelog
+* Mon Feb 20 2006 Ivana Varekova <varekova at redhat.com> 7.1-8
+- fix http exploit problem #181802
+
* Fri Jan 20 2006 Ivana Varekova <varekova at redhat.com> 7.1-7
- extended pam_unix patch (fix sshd service)
More information about the fedora-cvs-commits
mailing list