TEMP-0359745-ECBE05

NameTEMP-0359745-ECBE05
Descriptionwebalizer: symlink vulnerability
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs359745

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
webalizer (PTS)jessie, stretch2.23.08-1fixed
buster2.23.08-3.1fixed
sid, trixie, bookworm2.23.08-3.3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
webalizersource(unstable)2.01.10-29low359745

Notes

[sarge] - webalizer <no-dsa> (Minor issue)
Only exploitable in far-fetched scenarios, running it as root is insecure anyway

Search for package or bug name: Reporting problems