cvs commit: ports/www/awstats Makefile distinfo pkg-plist ports/www/awstats/files patch-CVE-2008-3714 patch-wwwroot-cgi-bin-awstats.pl

Chin-San Huang chinsan at FreeBSD.org
Sun Jan 4 06:18:03 UTC 2009 

chinsan     2009-01-04 06:18:02 UTC

  FreeBSD ports repository

  Modified files:
    www/awstats          Makefile distinfo pkg-plist 
    www/awstats/files    patch-wwwroot-cgi-bin-awstats.pl 
  Added files:
    www/awstats/files    patch-CVE-2008-3714 
  Log:
  - Update to 6.9
    Changes 6.9:
      New features/improvements:
      - With postfix that support DSN (Delivery Status Notifications) we exclude
        some lines to avoid counting mails twice in maillogconvert.pl script.
      - Logresolvemerge.pl support FreeRADIUS logs or anything else using (the
        fixed length!) ctime format timestamp.
      - Add option stoponfirsteof in logresolvemerge tool.
      - Add patch to support host_proxy tag in LogFormat (for Apache LogFormat
        containing %{X-Forwarded-For}i)
      - Renamed Add to favourites on "Hit on favicon".
      - Increase robots, search engines database (Added Google Chrome browser,
        better Vista, WII, detection, ...)
      - Update languages files.
      - Added a lot of patch from sourceforge.
  
      Fixes:
      - Fixed broken maxmind citi, org and isp plugins.
      - Remove   in name html tag to have HtmlHeadSection first.
      - Fix: [ 2001151 ] Security fix.
      - Fix: [ 2038681 ] missing <br _/_> in plugins/geoip_org_maxmind.pm
      - Fix: [ 1921942 ] html footer is missing from the allextraN report.
      - Fix: [ 1943466 ] error geoip_city_maxmind Can't locate object method "record_
      - Fix: [ 1808277 ] Incorrect function call in geoip_isp_maxmind.pm
      - Fix: Full list of extrasections was not ordered correctly
      - A lot of other fixes.
      - Added missing icons
  
      Other/Documentation:
      - None
  
  - Fix CVE-2008-3714 from the upstream
    (Sec: Enhance security of sanitizing parameters)
    http://awstats.cvs.sourceforge.net/viewvc/awstats/awstats/wwwroot/cgi-bin/awstats.pl?r1=1.925&r2=1.926
  
  PR:             ports/129957,
                  ports/130143
  Submitted by:   Eygene Ryabinkin <rea-fbsd _at\ codelabs.ru>,
                  Naram Qashat <cyberbotx -at\ cyberbotx.com>
  Approved by:    Alex Samorukov (maintainer)
  Security:       http://secunia.com/advisories/31519
  
  Revision  Changes    Path
  1.41      +10 -8     ports/www/awstats/Makefile
  1.24      +3 -3      ports/www/awstats/distinfo
  1.1       +22 -0     ports/www/awstats/files/patch-CVE-2008-3714 (new)
  1.3       +11 -11    ports/www/awstats/files/patch-wwwroot-cgi-bin-awstats.pl
  1.23      +13 -0     ports/www/awstats/pkg-plist

More information about the cvs-ports mailing list