Jump to content
Sign in to follow this  

Advisories MDVSA-2010:191: mailman

Recommended Posts

Multiple vulnerabilities has been found and corrected in mailman:


Multiple cross-site scripting (XSS) vulnerabilities in GNU Mailman

before 2.1.14rc1 allow remote authenticated users to inject arbitrary

web script or HTML via vectors involving (1) the list information

field or (2) the list description field (CVE-2010-3089).


Packages for 2008.0 and 2009.0 are provided as of the Extended

Maintenance Program. Please visit this link to learn more:



The updated packages have been patched to correct these issues.

Share this post

Link to post
Share on other sites
This topic is now closed to further replies.
Sign in to follow this  

  • Create New...