[ubuntu/maverick-security] mailman_2.1.13-4ubuntu0.2_amd64_translations.tar.gz, mailman_2.1.13-4ubuntu0.2_i386_translations.tar.gz, mailman, mailman_2.1.13-4ubuntu0.2_armel_translations.tar.gz, mailman_2.1.13-4ubuntu0.2_powerpc_translations.tar.gz (delayed) 1:2.1.13-4ubuntu0.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Feb 22 20:03:58 UTC 2011


mailman (1:2.1.13-4ubuntu0.2) maverick-security; urgency=low

  * SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
    - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
      Mailman/Cgi/confirm.py.
    - CVE-2011-0707
  * SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
    information and description fields
    - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
      Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
    - CVE-2010-3089

Date: Thu, 17 Feb 2011 09:49:04 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/mailman/1:2.1.13-4ubuntu0.2
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Feb 2011 09:49:04 -0500
Source: mailman
Binary: mailman
Architecture: source
Version: 1:2.1.13-4ubuntu0.2
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 mailman    - Powerful, web-based mailing list manager
Changes: 
 mailman (1:2.1.13-4ubuntu0.2) maverick-security; urgency=low
 .
   * SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
     - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
       Mailman/Cgi/confirm.py.
     - CVE-2011-0707
   * SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
     information and description fields
     - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
       Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
     - CVE-2010-3089
Checksums-Sha1: 
 79f93e8fb08509972413970e8d11828297cfb4dc 2097 mailman_2.1.13-4ubuntu0.2.dsc
 da8205ed6a5e2b503111336ae46278bd2a494e7e 109828 mailman_2.1.13-4ubuntu0.2.debian.tar.gz
Checksums-Sha256: 
 530dc64b82b1f0c572f6edfaa72cc51c558ff0d5b94282b27362dc94fdc4c15c 2097 mailman_2.1.13-4ubuntu0.2.dsc
 da9ab0510af20096b715e8ce8f37a60b865b28e0ff5ae9c632833b0dc6fe3847 109828 mailman_2.1.13-4ubuntu0.2.debian.tar.gz
Files: 
 3378c8f3bd8cb0e0b5ca9b8c63557a53 2097 mail optional mailman_2.1.13-4ubuntu0.2.dsc
 933f9ecfe7c2672da7b724ac541e2038 109828 mail optional mailman_2.1.13-4ubuntu0.2.debian.tar.gz
Original-Maintainer: Mailman for Debian <pkg-mailman-hackers at lists.alioth.debian.org>


More information about the Maverick-changes mailing list