Re: Accepted mailman 2.0.11-1woody2 (i386 source)

To: debian-devel@lists.debian.org
Subject: Re: Accepted mailman 2.0.11-1woody2 (i386 source)
From: Tollef Fog Heen <tollef@add.no>
Date: 09 Aug 2002 10:44:16 +0200
Message-id: <[🔎] 87lm7gifq7.fsf@arabella.samfundet.no>
In-reply-to: <E17d41u-00079y-00@auric.debian.org>
References: <E17d41u-00079y-00@auric.debian.org>

* Matt Zimmerman 

|    * Security team NMU
|    * Apply security fixes from 2.0.12:
|      - Implemented a guard against some reply loops and 'bot
|        subscription attacks.  Specifically, if a message to -request
|        has a Precedence: bulk (or list, or junk) header, the command is
|        ignored.  Well-behaved 'bots should always include such a
|        header.
|  .
|      - Closed another minor cross-site scripting vulnerability.

as always when NMU-ing, please, please send a patch to the BTS and/or
the maintainer.

-- 
Tollef Fog Heen                                                        ,''`.
UNIX is user friendly, it's just picky about who its friends are      : :' :
                                                                      `. `' 
                                                                        `-

Reply to:

Prev by Date: Re: Library namespace conflicts
Next by Date: Re: ITP: maria
Previous by thread: Bug#155995: ITP: dbmix -- A DJ mixer for digital audio streams.
Next by thread: please remove current libsdl-image1.2, libsdl-perl etc. from sarge.
Index(es):
- Date
- Thread