|Category:||Debian Local Security Checks|
|Title:||Debian: Security Advisory for awl (DSA-4660-1)|
|Summary:||The remote host is missing an update for the 'awl'; package(s) announced via the DSA-4660-1 advisory.|
The remote host is missing an update for the 'awl'
package(s) announced via the DSA-4660-1 advisory.
Andrew Bartlett discovered that awl, DAViCal Andrew's Web Libraries,
did not properly handle session management: this would allow a
malicious user to impersonate other sessions or users.
'awl' package(s) on Debian Linux.
For the oldstable distribution (stretch), these problems have been fixed
in version 0.57-1+deb9u1.
For the stable distribution (buster), these problems have been fixed in
We recommend that you upgrade your awl packages.
Common Vulnerability Exposure (CVE) ID: CVE-2020-11728|
Common Vulnerability Exposure (CVE) ID: CVE-2020-11729
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.