Ubuntu
mailman package

Branches for Hoary

Name Status Last Modified Last Commit
lp://qastaging/ubuntu/hoary/mailman 1 Development 2009-08-05 06:41:21 UTC
2. * Brown bag release -- use '/' instea...

Author: Tollef Fog Heen
Revision Date: 2005-02-16 20:29:00 UTC

* Brown bag release -- use '/' instead of the undefined SLASH in
  Cgi/private.py. (closes: #294874)
* Handle the case of non-ascii chars in realname. (closes: #293861)
* Fix up typo in cron script (closes: #284311)
* Use head -n 1 instead of cat for getting the mailname out of
  /etc/mailname. (closes: #287636)
lp://qastaging/ubuntu/hoary-security/mailman 1 Development 2009-08-05 06:41:44 UTC
5. * SECURITY UPDATE: XSS. * Add debian/...

Author: Martin Pitt
Revision Date: 2006-09-12 20:46:52 UTC

* SECURITY UPDATE: XSS.
* Add debian/patches/security-CVE-2006-3636-XSS.dpatch:
  - Fix various cross-site scripting vulnerabilities.
  - Patch backported from svn head, thanks to Barry Warsaw for preparing it.
  - CVE-2006-3636
* Add debian/patches/security-CVE-2006-2941.dpatch:
  - Scrubber.py: Do not bail out if emails' get_filename() throws a
    ValueError. This has been properly fixed in the next upstream email
    package (in Python core), but the fix is very intrusive. Thanks to Steve
    Alexander for discovering this and for the proposed patch.
  - CVE-2006-2941
  - Closes: LP#49620
* Add debian/patches/security-error_log.dpatch:
  - Check characters in URL to prevent injecting bogus messages into
    error_log.
  - Patch taken from upstream SVN:
    http://svn.sourceforge.net/viewvc/mailman?view=rev&revision=7918
12 of 2 results FirstPreviousNextLast