[Pkg-mailman-hackers] Bug#888201: mailman: CVE-2018-5950
Salvatore Bonaccorso
carnil at debian.org
Sun Feb 4 20:02:09 UTC 2018
Control: found -1 1:2.1.18-1
On Thu, Feb 01, 2018 at 01:46:05PM +0100, Thijs Kinkhorst wrote:
> >> I plan to release Mailman 2.1.26 along with a patch for older releases
> >> to fix this issue on Feb 4, 2018. At that time, full details of the
> >> vulnerability will be public.
>
> I've reserved time on Sunday to in any case to sid when the fix is
> released, and depending on the details/severity look into a security
> upload.
Thijs, unless I'm completely wrong, this issue goes at least back to
the jessie version? Marking as such for the BTS, but please correct me
if I'm wrong.
Regards,
Salvatore
More information about the Pkg-mailman-hackers
mailing list