[ubuntu/lucid-security] mailman_2.1.13-1ubuntu0.2_sparc_translations.tar.gz (delayed), mailman_2.1.13-1ubuntu0.2_armel_translations.tar.gz, mailman, mailman_2.1.13-1ubuntu0.2_i386_translations.tar.gz, mailman_2.1.13-1ubuntu0.2_powerpc_translations.tar.gz, mailman_2.1.13-1ubuntu0.2_ia64_translations.tar.gz, mailman_2.1.13-1ubuntu0.2_amd64_translations.tar.gz 1:2.1.13-1ubuntu0.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Feb 22 20:04:46 UTC 2011 

mailman (1:2.1.13-1ubuntu0.2) lucid-security; urgency=low

  * SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
    - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
      Mailman/Cgi/confirm.py.
    - CVE-2011-0707
  * SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
    information and description fields
    - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
      Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
    - CVE-2010-3089

Date: Thu, 17 Feb 2011 10:02:48 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/mailman/1:2.1.13-1ubuntu0.2
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Feb 2011 10:02:48 -0500
Source: mailman
Binary: mailman
Architecture: source
Version: 1:2.1.13-1ubuntu0.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 mailman    - Powerful, web-based mailing list manager
Changes: 
 mailman (1:2.1.13-1ubuntu0.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
     - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
       Mailman/Cgi/confirm.py.
     - CVE-2011-0707
   * SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
     information and description fields
     - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
       Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
     - CVE-2010-3089
Checksums-Sha1: 
 8b0f21f2573dd0c010b3d498f3ca081391897f09 2078 mailman_2.1.13-1ubuntu0.2.dsc
 64576a4483321a6452c4d3c689b53a4e508317b1 134303 mailman_2.1.13-1ubuntu0.2.diff.gz
Checksums-Sha256: 
 96ba9640cfe0197202299c6fd9f2ae72d7d3dfc662aa6281e9da356d0255015d 2078 mailman_2.1.13-1ubuntu0.2.dsc
 c0a4d38e3f1ae7ffd2c86163cf222508181a6e1052fee7b96e1ca09525d78b66 134303 mailman_2.1.13-1ubuntu0.2.diff.gz
Files: 
 c330e0f5c5ca37e2fc3d7dfdaf9da0d2 2078 mail optional mailman_2.1.13-1ubuntu0.2.dsc
 2229842594cc9fc00db4f0633316abfc 134303 mail optional mailman_2.1.13-1ubuntu0.2.diff.gz
Original-Maintainer: Mailman for Debian <pkg-mailman-hackers at lists.alioth.debian.org>

More information about the Lucid-changes mailing list