1
Candidate: CVE-2015-1306
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1306
5
https://www.sympa.org/security_advisories#security_breaches_in_newsletter_posting
6
https://www.sympa.org/security_advisories
7
http://www.openwall.com/lists/oss-security/2015/01/20/4
8
http://www.debian.org/security/2015/dsa-3134
9
http://secunia.com/advisories/62442
10
http://secunia.com/advisories/62387
12
The newsletter posting area in the web interface in Sympa 6.0.x before
13
6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary
14
files via unspecified vectors.
23
upstream_sympa: released (6.1.23~dfsg-2, 6.1.24, 6.0.10)
24
lucid_sympa: ignored (reached end-of-life)
25
precise_sympa: ignored (reached end-of-life)
26
precise/esm_sympa: DNE (precise was needed)
28
utopic_sympa: ignored (reached end-of-life)
29
vivid_sympa: not-affected (6.1.23~dfsg-2)
30
vivid/stable-phone-overlay_sympa: DNE
31
vivid/ubuntu-core_sympa: DNE
32
wily_sympa: not-affected (6.1.23~dfsg-2)
33
xenial_sympa: not-affected (6.1.23~dfsg-2)
34
yakkety_sympa: not-affected (6.1.23~dfsg-2)
35
zesty_sympa: not-affected (6.1.23~dfsg-2)
36
artful_sympa: not-affected (6.1.23~dfsg-2)
37
bionic_sympa: not-affected (6.1.23~dfsg-2)
38
devel_sympa: not-affected (6.1.23~dfsg-2)