Debian security: DSA-094 mailman

44

Author: JT Smith

From Debian.org: “Barry A. Warsaw reported several cross-site scripting security holes in Mailman, due to non-existent escaping of CGI variables.

These have been fixed upstream in version 2.0.8, and the relevant patches have been backported to version 1.1-10 in Debian.”

Category:

  • Linux