[Bug 1780874] Re: Arbitrary text injection vulnerability in Mailman CGIs
Mark Sapiro
mark at msapiro.net
Mon Jul 23 10:24:33 EDT 2018
This patch mitigates the content spoofing vulnerability by truncating
long list names.
** Patch added: "Patch to fix this issue"
https://bugs.launchpad.net/mailman/+bug/1780874/+attachment/5166712/+files/1780874.patch
** Information type changed from Private Security to Public
--
You received this bug notification because you are a member of Mailman
Coders, which is subscribed to GNU Mailman.
https://bugs.launchpad.net/bugs/1780874
Title:
Arbitrary text injection vulnerability in Mailman CGIs
To manage notifications about this bug go to:
https://bugs.launchpad.net/mailman/+bug/1780874/+subscriptions
More information about the Mailman-coders
mailing list