[Bug 1437145] Re: Path traversal vulnerability exists in Mailman and can be exploited if Mailman's MTA is Exim.

Mark Sapiro mark at msapiro.net
Fri Mar 27 19:28:16 CET 2015


It appears that the postfix_to_mailman.py transport for Postfix and
probably other MTA transports that deliver programmatically without
using aliases are ulso vulnerable.

** Attachment added: "Patch to fix this bug"
   https://bugs.launchpad.net/mailman/+bug/1437145/+attachment/4358114/+files/p

** Attachment removed: "Patch to fix this bug"
   https://bugs.launchpad.net/mailman/+bug/1437145/+attachment/4357589/+files/p

-- 
You received this bug notification because you are a member of Mailman
Coders, which is subscribed to GNU Mailman.
https://bugs.launchpad.net/bugs/1437145

Title:
  Path traversal vulnerability exists in Mailman and can be exploited if
  Mailman's MTA is Exim.

To manage notifications about this bug go to:
https://bugs.launchpad.net/mailman/+bug/1437145/+subscriptions


More information about the Mailman-coders mailing list