Accepted mailman 2.0.11-1woody2 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 1 Aug 2002 19:37:32 -0400
Source: mailman
Binary: mailman
Architecture: source i386
Version: 2.0.11-1woody2
Distribution: stable-security
Urgency: low
Maintainer: Tollef Fog Heen <tfheen@debian.org>
Changed-By: Matt Zimmerman <mdz@debian.org>
Description:
mailman - Powerful, web-based mailing list manager
Changes:
mailman (2.0.11-1woody2) stable-security; urgency=low
.
* Security team NMU
* Apply security fixes from 2.0.12:
- Implemented a guard against some reply loops and 'bot
subscription attacks. Specifically, if a message to -request
has a Precedence: bulk (or list, or junk) header, the command is
ignored. Well-behaved 'bots should always include such a
header.
.
- Closed another minor cross-site scripting vulnerability.
Files:
5cceabc484906689b7408f71869dfb59 595 mail optional mailman_2.0.11-1woody2.dsc
dd977c232b4deab55ab45a39e306fa10 30899 mail optional mailman_2.0.11-1woody2.diff.gz
ed7707ac59ea0901db6a7d4519193bdb 474860 mail optional mailman_2.0.11-1woody2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE9SclpArxCt0PiXR4RAu9NAKDWP/NpE3bNpB6jSGoM/btS0O8f7wCeO9F8
JC019Xei0ROb+YBbWGXZOkE=
=v/e+
-----END PGP SIGNATURE-----
Accepted:
mailman_2.0.11-1woody2.diff.gz
to pool/main/m/mailman/mailman_2.0.11-1woody2.diff.gz
mailman_2.0.11-1woody2.dsc
to pool/main/m/mailman/mailman_2.0.11-1woody2.dsc
mailman_2.0.11-1woody2_i386.deb
to pool/main/m/mailman/mailman_2.0.11-1woody2_i386.deb
Reply to: