Updated awstats package fixes a security vulnerabilityPublication date: 14 Jan 2021
Affected Mageia releases : 7
It was discovered that Awstats was vulnerable to path traversal attacks. A remote unauthenticated attacker could leverage that to perform arbitrary code execution. The previous fix did not fully address the issue when the default /etc/awstats/awstats.conf is not present (CVE-2020-29600).