Debian Security Advisory
DSA-125-1 analog -- cross-site scripting
- Date Reported:
- 28 Mar 2002
- Affected Packages:
- Security database references:
- In the Bugtraq database (at SecurityFocus): BugTraq ID 4389.
In Mitre's CVE dictionary: CVE-2002-0166.
- More information:
This problem has been fixed in the upstream version 5.22 of analog. Unfortunately patching the old version of analog in the stable distribution of Debian instead is a very large job that defeats us.
We recommend that you upgrade your analog package immediately.
- Fixed in:
Debian GNU/Linux 2.2 (potato)
- Intel ia32:
- Motorola 680x0:
- Sun Sparc:
MD5 checksums of the listed files are available in the original advisory.