[Bug 1952384] [NEW] A CSRF vulnerability could allow a list moderator or list member to access the admin UI
*** This bug is a security vulnerability *** Private security bug reported: A list moderator or list member can potentially carry out a CSRF attach by getting a list admin to visit a crafted web page ** Affects: mailman Importance: Medium Assignee: Mark Sapiro (msapiro) Status: In Progress ** Patch added: "Patch to fix this issue." https://bugs.launchpad.net/bugs/1952384/+attachment/5543451/+files/patch.txt -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1952384 Title: A CSRF vulnerability could allow a list moderator or list member to access the admin UI To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1952384/+subscriptions
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-44227 -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1952384 Title: A CSRF vulnerability could allow a list moderator or list member to access the admin UI To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1952384/+subscriptions
** Description changed: A list moderator or list member can potentially carry out a CSRF attach - by getting a list admin to visit a crafted web page + by getting a list admin to visit a crafted web page. + + A moderator or list member can get an admindb or options page with a + CSRF token and use that token in a crafted POST request to the admin + page to change the list admin password or other settings and convince an + admin to submit the POST. + + Likewise, a list member can do the same with a POST to the admindb page + to handle requests. -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1952384 Title: A CSRF vulnerability could allow a list moderator or list member to access the admin UI To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1952384/+subscriptions
** Branch linked: lp:mailman/2.1 -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1952384 Title: A CSRF vulnerability could allow a list moderator or list member to access the admin UI To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1952384/+subscriptions
** Changed in: mailman Status: In Progress => Fix Released ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Mailman Coders, which is subscribed to GNU Mailman. https://bugs.launchpad.net/bugs/1952384 Title: A CSRF vulnerability could allow a list moderator or list member to access the admin UI To manage notifications about this bug go to: https://bugs.launchpad.net/mailman/+bug/1952384/+subscriptions
participants (2)
-
Launchpad Bug Tracker -
Mark Sapiro