Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 604548

Summary: www-misc/awstats-7.7 version bump
Product: Gentoo Linux Reporter: Tobias Sager <moixa>
Component: Current packagesAssignee: Gentoo Web Application Packages Maintainers <web-apps>
Severity: normal CC: joshin, reuben-gentoo-bugzilla
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 642428    

Description Tobias Sager 2017-01-03 20:18:03 UTC
v7.6 has been released, appreciate version bump.
Current ebuild works fine for me.

- Security fix: "|" not allowed into DirLang parameter.
- Security fix: More restrictive rule for using AWSTATS_ENABLE_CONFIG_DIR.
- Update robots database.
- Fix OS database.
- Update/fix of documentation.
- Add missing country flag for "el".
- Add partial support for pure-ftpd stats format in method field.
- Add support for macOS Sierra.
- Add web fonts to default NotPageList, add support for GPX and JSON files

Reproducible: Always
Comment 1 Tobias Sager 2018-06-08 06:23:37 UTC
v7.7 has been released with critical security fixes for remote execution

Security fix: CVE-2017-1000501
Security fix: Missing sanitizing of parameters
Fix LogFormat=4 with url containing spaces.
Fix to window.opener vulnerability in external referral site links.
Add methodurlprot in key to define log format.
Add Dynamic DNS Lookup.
Fix edge support.
Comment 2 Josh G 2019-04-07 19:41:13 UTC
Confirming Tobia's comment. 
Renaming the existing ebuild works for me.
Comment 3 Larry the Git Cow gentoo-dev 2020-05-12 11:06:24 UTC
The bug has been closed via the following commit(s):

commit 22812026e7262e3f7fc4cd5243df30c023b97133
Author:     Jorge Manuel B. S. Vicetto (jmbsvicetto) <>
AuthorDate: 2020-05-12 11:06:09 +0000
Commit:     Jorge Manuel B. S. Vicetto (jmbsvicetto) <>
CommitDate: 2020-05-12 11:06:09 +0000

    www-misc/awstats: Security bump to 7.8 release (CVE-2017-1000501).
    Package-Manager: Portage-2.3.96, Repoman-2.3.22
    Signed-off-by: Jorge Manuel B. S. Vicetto (jmbsvicetto) <>

 www-misc/awstats/Manifest           |   1 +
 www-misc/awstats/awstats-7.8.ebuild | 111 ++++++++++++++++++++++++++++++++++++
 2 files changed, 112 insertions(+)