Bug 173140

Summary: CVE-2005-3573 Mailman Denial of Service (CVE-2005-4153)
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: mailmanAssignee: Harald Hoyer <harald>
Status: CLOSED ERRATA QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 4CC: deisenst
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=moderate,public=20050912,reported=20051114,source=debian
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-06-05 11:06:36 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 193843    

Description Josh Bressers 2005-11-14 15:38:37 UTC 
Mailman Denial of Service

A message with a malformed Content-Disposition: headers can crash
mailman and prevent a list from working.  The bad file will not affect
all lists hosted on the machine, only the list which receives the
malicious message.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=327732


This issue also affects FC3
Comment 1 Mark J. Cox 2005-12-19 10:21:51 UTC 
Also another DoS based on integer overflow of year in header:       
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=326024
CVE-2005-4153
Comment 2 Harald Hoyer 2006-05-12 06:23:44 UTC 
Please test
http://www.redhat.com/archives/fedora-test-list/2006-May/msg00131.html
Comment 3 David Eisenstein 2006-06-05 07:26:07 UTC 
I am suspecting that this bug report is related to the mailman package that
was released in FEDORA-2006-534, mailman-2.1.8-0.FC4.1, 
<http://www.redhat.com/archives/fedora-package-announce/2006-May/msg00134.html>?

If so, should this bug be closed ERRATA?
Comment 4 Josh Bressers 2006-06-05 11:06:36 UTC 
You appear to be correct, thanks.