rpms/awstats/devel awstats-6.9-CVE-2008-3714-debian.patch, NONE, 1.1 .cvsignore, 1.8, 1.9 awstats.spec, 1.25, 1.26 sources, 1.12, 1.13 awstats-6.8-CVE-2008-3714-debian.patch, 1.1, NONE

Aurelien Bompard abompard at fedoraproject.org
Wed Dec 31 08:16:07 UTC 2008 

Author: abompard

Update of /cvs/pkgs/rpms/awstats/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv31947/devel

Modified Files:
	.cvsignore awstats.spec sources 
Added Files:
	awstats-6.9-CVE-2008-3714-debian.patch 
Removed Files:
	awstats-6.8-CVE-2008-3714-debian.patch 
Log Message:
* Wed Dec 31 2008 Aurelien Bompard <abompard at fedoraproject.org> 6.9-1
- version 6.9
- use Debian's version of the CVE-2008-3714 fix


awstats-6.9-CVE-2008-3714-debian.patch:

--- NEW FILE awstats-6.9-CVE-2008-3714-debian.patch ---
diff -up ./wwwroot/cgi-bin/awstats.pl.CVE-2008-3714 ./wwwroot/cgi-bin/awstats.pl
--- ./wwwroot/cgi-bin/awstats.pl.CVE-2008-3714	2008-12-31 09:09:43.000000000 +0100
+++ ./wwwroot/cgi-bin/awstats.pl	2008-12-31 09:10:11.000000000 +0100
@@ -7521,8 +7521,8 @@ sub EncodeString {
 sub DecodeEncodedString {
 	my $stringtodecode = shift;
 	$stringtodecode =~ tr/\+/ /s;
-	$stringtodecode =~ s/%22//g;
 	$stringtodecode =~ s/%([A-F0-9][A-F0-9])/pack("C", hex($1))/ieg;
+	$stringtodecode =~ s/["']//g;
 	return $stringtodecode;
 }
 


Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/awstats/devel/.cvsignore,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -r1.8 -r1.9
--- .cvsignore	21 Jul 2008 21:11:08 -0000	1.8
+++ .cvsignore	31 Dec 2008 08:15:36 -0000	1.9
@@ -1 +1 @@
-awstats-6.8.tar.gz
+awstats-6.9.tar.gz


Index: awstats.spec
===================================================================
RCS file: /cvs/pkgs/rpms/awstats/devel/awstats.spec,v
retrieving revision 1.25
retrieving revision 1.26
diff -u -r1.25 -r1.26
--- awstats.spec	6 Dec 2008 09:32:21 -0000	1.25
+++ awstats.spec	31 Dec 2008 08:15:36 -0000	1.26
@@ -1,14 +1,13 @@
 Name:       awstats
-Version:    6.8
-Release:    3%{?dist}
+Version:    6.9
+Release:    1%{?dist}
 Summary:    Advanced Web Statistics
 License:    GPLv2
 Group:      Applications/Internet
 URL:        http://awstats.sourceforge.net
 Source0:    http://dl.sf.net/awstats/awstats-%{version}.tar.gz
 #Source0:    http://awstats.sourceforge.net/files/awstats-6.6.tar.gz
-# http://awstats.cvs.sourceforge.net/awstats/awstats/wwwroot/cgi-bin/awstats.pl?r1=1.910&r2=1.912&view=patch
-Patch0:     awstats-6.8-CVE-2008-3714-debian.patch
+Patch0:     awstats-6.9-CVE-2008-3714-debian.patch
 
 BuildArch:  noarch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
@@ -161,6 +160,10 @@
 
 
 %changelog
+* Wed Dec 31 2008 Aurelien Bompard <abompard at fedoraproject.org> 6.9-1
+- version 6.9
+- use Debian's version of the CVE-2008-3714 fix
+
 * Sat Dec 06 2008 Aurelien Bompard <abompard at fedoraproject.org> 6.8-3
 - Use Debian's patch for CVE-2008-3714 (rh#474396)
 


Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/awstats/devel/sources,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -r1.12 -r1.13
--- sources	21 Jul 2008 21:11:08 -0000	1.12
+++ sources	31 Dec 2008 08:15:36 -0000	1.13
@@ -1 +1 @@
-1a35d5a2ca29b31dabd650f3e5f173e9  awstats-6.8.tar.gz
+fc19dbb8449eccf3300efb30ca3376cb  awstats-6.9.tar.gz


--- awstats-6.8-CVE-2008-3714-debian.patch DELETED ---

More information about the fedora-extras-commits mailing list