[Mailman-Developers] Patches for security issues in 2.1.9rc1
Albert Chin
mailman-developers at mlists.thewrittenword.com
Sun Sep 10 10:25:16 CEST 2006
We'd like to create a patch on top of 2.1.8 for the security issues in
2.1.9rc1.
For the log injection vulnerability, we applied a diff of revisions
7822-7918 for Mailman/Utils.py from the Release_2_1-maint branch.
For CVE-2006-3636, we applied a diff of revisions 7975-8001 from the
Release_2_1-maint branch.
What revisions contain the patch for CVE-2006-2941?
- Fixed denial of service attack which can be caused by some
standards-breaking RFC 2231 formatted headers. CVE-2006-2941.
--
albert chin (china at thewrittenword.com)
More information about the Mailman-Developers
mailing list