-
Committer:
Bazaar Package Importer
-
Author(s):
Emanuele Gentili
-
Date:
2008-03-07 02:55:22 UTC
-
Revision ID:
james.westby@ubuntu.com-20080307025522-0zajslp5v9vada1j
Tags: 1:2.1.9-9ubuntu1
* debian/control:
+ updated maintainer field
* SECURITY UPDATE:
+ debian/patches/100_CVE-2008-0564.dpatch (LP: #199338)
- Multiple cross-site scripting (XSS) vulnerabilities in Mailman
before 2.1.10b1 allow remote attackers to inject arbitrary web
script or HTML via unspecified vectors related to (1) editing
templates and (2) the list's "info attribute" in the web
administrator interface.
* References
+ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0564
+ http://bugs.gentoo.org/show_bug.cgi?id=208710