Bug 69787 - Security problems in mailman-2.0.9
Summary: Security problems in mailman-2.0.9
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Raw Hide
Classification: Retired
Component: mailman
Version: 1.0
Hardware: All
OS: Linux
high
medium
Target Milestone: ---
Assignee: Nalin Dahyabhai
QA Contact:
URL: http://sourceforge.net/projects/mailman/
Whiteboard:
Depends On:
Blocks: 67217
TreeView+ depends on / blocked
 
Reported: 2002-07-25 12:45 UTC by Alec Voropay
Modified: 2008-05-01 15:38 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2002-08-13 01:54:07 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2002:176 0 normal SHIPPED_LIVE : Updated mailman packages close cross-site scripting vulnerability 2002-08-12 04:00:00 UTC
Red Hat Product Errata RHSA-2002:177 0 normal SHIPPED_LIVE : Updated mailman packages close cross-site scripting vulnerability 2002-08-12 04:00:00 UTC
Red Hat Product Errata RHSA-2002:178 0 normal SHIPPED_LIVE : Updated mailman packages close cross-site scripting vulnerability 2002-08-13 04:00:00 UTC
Red Hat Product Errata RHSA-2002:181 0 normal SHIPPED_LIVE Important: mailman security update 2002-08-13 04:00:00 UTC

Description Alec Voropay 2002-07-25 12:45:36 UTC 
Description of Problem:
Security problems in mailman-2.0.9

Version-Release number of selected component (if applicable):


How Reproducible:


Steps to Reproduce:
1. 
2. 
3. 

Actual Results:


Expected Results:


Additional Information:
Comment 1 Alec Voropay 2002-07-30 08:07:23 UTC 
RedHat Secure WEB Server has Mailman-2.0.11
ButRaw Hide still mailman-2.0.9

http://lwn.net/Articles/3758/
Comment 2 Nalin Dahyabhai 2002-08-13 20:47:53 UTC 
Raw Hide's updated to 2.0.13.  Errata IDs RHSA-2002:176-178 reserved for errata.
Comment 3 Nerijus Baliūnas 2002-08-28 15:41:09 UTC 
Could you please update mailman version of redhat-watch-list? Now 
it is only 2.0.1...
Note You need to log in before you can comment on or make changes to this bug.