Download
| Alert*
oval:org.secpod.oval:def:504719
Mailman is a program used to help manage e-mail discussion lists. Security Fix: * mailman: XSS via file attachments in list archives For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the Ref ... oval:org.secpod.oval:def:63492 mailman: Web-based mailing list manager Several security issues were fixed in Mailman. oval:org.secpod.oval:def:67992 Mailman is a program used to help manage e-mail discussion lists. Security Fix: * mailman: XSS via file attachments in list archives For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the Ref ... oval:org.secpod.oval:def:62958 Hanno Boeck discovered that it was possible to create a cross site scripting attack on the webarchives of the Mailman mailing list manager, by sending a special type of attachement. oval:org.secpod.oval:def:118217 Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from the ... oval:org.secpod.oval:def:118199 Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from the ... oval:org.secpod.oval:def:705455 mailman: Web-based mailing list manager Several security issues were fixed in Mailman. oval:org.secpod.oval:def:604813 Hanno Boeck discovered that it was possible to create a cross site scripting attack on the webarchives of the Mailman mailing list manager, by sending a special type of attachement. oval:org.secpod.oval:def:89000573 This update for mailman fixes the following issues: Security issue fixed: - CVE-2020-12108: Fixed a content injection bug . - CVE-2020-12137: Fixed a XSS vulnerability caused by MIME type confusion . Non-security issue fixed: - Fixed rights and ownership on /var/lib/mailman/archives . - Don"t defaul ... oval:org.secpod.oval:def:89000530 This update for mailman fixes the following issues: Security issue fixed: - CVE-2020-12137: Fixed a XSS vulnerability caused by MIME type confusion . Non-security issue fixed: - Fixed rights and ownership on /var/lib/mailman/archives . oval:org.secpod.oval:def:1504461 [3:2.1.29-10] - Fix match patter to reduce false allocation [3:2.1.29-9] - Fix for CVE-2020-12137 [3:2.1.29-8] - Drop unversioned python from comments. [3:2.1.29-7] - Change attr of /etc/mailman [3:2.1.29-6] - Update run directory references - fix #1188043 - set 2775 permission for /etc/mailman oval:org.secpod.oval:def:2500118 Mailman is a program used to help manage e-mail discussion lists. oval:org.secpod.oval:def:2106018 Oracle Solaris 11 - ( CVE-2020-12137 ) oval:org.secpod.oval:def:706201 mailman: Web-based mailing list manager Details: USN-5009-1 fixed vulnerabilities in Mailman. This update provides the corresponding updates for Ubuntu 20.04 LTS. In addition, the following CVEs were fixed: It was discovered that Mailman allows arbitrary content injection. An attacker could use this ... oval:org.secpod.oval:def:76357 mailman: Web-based mailing list manager Details: USN-5009-1 fixed vulnerabilities in Mailman. This update provides the corresponding updates for Linux Mint 20.x LTS. In addition, the following CVEs were fixed: It was discovered that Mailman allows arbitrary content injection. An attacker could use t ... |