ELSA-2015-1417 - mailman security and bug fix update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2015-07-28 |
Description
[3:2.1.12-25]
- fix CVE-2002-0389 - local users able to read private mailing list archives
[3:2.1.12-24]
- fix CVE-2015-2775 - directory traversal in MTA transports
[3:2.1.12-23]
- fix #1095359 - handle update when some mailing lists have been created
by newer Mailman than this one
[3:2.1.12-22]
- fix #1095359 - add support for DMARC
[3:2.1.12-21]
- fix #1056366 - fix bad subject of the welcome email when creating list using
newlist command
[3:2.1.12-20]
- fix #745409 - do not set Indexes in httpd configuration for public archive
- fix #1008139 - fix traceback when list_data_dir is not a child of var_prefix
[3:2.1.12-19]
- fix #765807 - fix traceback when message is received to moderated list
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 6 (i386) | mailman-2.1.12-25.el6.src.rpm | 7833566ac8dd27a42ef661e1fe407593 | ELSA-2018-0504 |
| mailman-2.1.12-25.el6.i686.rpm | 865d939caa79de3901df15ed9ea5243b | ELSA-2018-0504 |
|
| Oracle Linux 6 (x86_64) | mailman-2.1.12-25.el6.src.rpm | 7833566ac8dd27a42ef661e1fe407593 | ELSA-2018-0504 |
| mailman-2.1.12-25.el6.x86_64.rpm | e1f22ab5b0419a221d9bfc12380ffaaf | ELSA-2018-0504 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
