from DESCR:
This is a module for the Apache HTTP Server. It replaces the
Apache-FP patches and module supplied with the Microsoft
FrontPage Server Extensions available from Microsoft and
Ready-to-Run Software.
Using this module allows you to use advanced features of the
FrontPage client with your Apache HTTP Server (e.g. creating
FrontPage enabled subwebs using the FrontPage client in con-
trast to creating them as user "root" with "fpinstall.sh" or
the "fpsrvadm.exe"-utility on the system's shell).
Fixed buffer overflow.
>SECURITY ADVISORY 13th February 2001
>----------------------------------------------------------------------
>Program: analog
>Versions: all versions except 4.16 and 4.90beta3
>Operating systems: all
>----------------------------------------------------------------------
>There is a buffer overflow bug in all versions of analog released
>prior to today. A malicious user could use an ALIAS command to
>construct very long strings which were not checked for length.
>
>This bug is particularly dangerous if the form interface (which allows
>unknown users to run the program via a CGI script) has been installed.
>
>This bug was discovered by the program author, and there is no known
>exploit. However, users are advised to upgrade to one of the two safe
>versions immediately, especially if they have installed the form
>interface. The URL is http://www.analog.cx/
>
>I apologise for the inconvenience.
> Stephen Turner
--
Mason is a powerful Perl-based web site development and delivery
engine. With Mason you can embed Perl code in your HTML and construct
pages from shared, reusable components.
Mason solves the common problems of site development: caching,
debugging, templating, simulating browser conditions, maintaining
development and production sites, and more.
Although it can be used from CGI or even stand-alone, it is optimally
designed for use with two other open source technologies: mod_perl
and Apache.
--
This is a collection of modules that represent, create, and extract
information from HTML syntax trees. These modules used to be part
of the libwww-perl distribution, but are now unbundled in order to
facilitate a separate development track. Bug reports and discussions
about these modules can still be sent to the <libwww@perl.org>
mailing list, or to <sburke@cpan.org>.
