Accepted: mailman 1:2.1.9-9ubuntu1 (source)
Emanuele Gentili
emgent at emanuele-gentili.com
Fri Mar 7 04:26:08 GMT 2008
Accepted:
OK: mailman_2.1.9.orig.tar.gz
OK: mailman_2.1.9-9ubuntu1.diff.gz
OK: mailman_2.1.9-9ubuntu1.dsc
-> Component: main Section: mail
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 07 Mar 2008 02:55:22 +0100
Source: mailman
Binary: mailman
Architecture: source
Version: 1:2.1.9-9ubuntu1
Distribution: hardy
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Emanuele Gentili <emgent at emanuele-gentili.com>
Description:
mailman - Powerful, web-based mailing list manager
Launchpad-Bugs-Fixed: 199338
Changes:
mailman (1:2.1.9-9ubuntu1) hardy; urgency=low
.
* debian/control:
+ updated maintainer field
* SECURITY UPDATE:
+ debian/patches/100_CVE-2008-0564.dpatch (LP: #199338)
- Multiple cross-site scripting (XSS) vulnerabilities in Mailman
before 2.1.10b1 allow remote attackers to inject arbitrary web
script or HTML via unspecified vectors related to (1) editing
templates and (2) the list's "info attribute" in the web
administrator interface.
* References
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0564
+ http://bugs.gentoo.org/show_bug.cgi?id=208710
Files:
42593db7713a0a3ee616a6fbfee3cb4e 1012 mail optional mailman_2.1.9-9ubuntu1.dsc
bfe17d075ec94cfc3f90071406f3867d 149861 mail optional mailman_2.1.9-9ubuntu1.diff.gz
Original-Maintainer: Mailman for Debian <pkg-mailman-hackers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFH0MKPe9GwFciKvaMRApTXAJ9WTKKdIKj+Lc3AJ7Mi7tv7V/3Z4QCgwe5O
B0jBHrxIj+b6zln3IsTzQSg=
=AbcY
-----END PGP SIGNATURE-----
More information about the Hardy-changes
mailing list