[Mailman-Developers] [Mailman-Users] any info on this reported exploit?
tkikuchi at is.kochi-u.ac.jp
Tue Jan 31 02:37:25 CET 2006
Tokio Kikuchi wrote:
>> GNU Mailman Large Date Data Denial Of Service Vulnerability
>> GNU Mailman is prone to a denial of service attack. This issue affects
>> email date parsing functionality of Mailman.
>> 06.3.18 CVE: CVE-2005-4153
> Mailman-2.1.7 is not vulnerable to this issue.
We may have to patch against this email package parsedate bug.
I've just uploaded a patch on SF tracker. Please someone review this
before I commit in the CVS (this weekend, maybe).
Tokio Kikuchi, tkikuchi@ is.kochi-u.ac.jp
More information about the Mailman-Developers