| Revision Date: | 2008-03-20 | Version: | 643 |
| Title: | RHSA-2006:0204: mailman security update (Moderate) |
| Description: | Mailman is software to help manage email discussion lists.
A flaw in handling of UTF8 character encodings was found in Mailman. An attacker could send a carefully crafted email message to a mailing list run by Mailman which would cause that particular mailing list to stop working. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-3573 to this issue.
A flaw in date handling was found in Mailman version 2.1.4 through 2.1.6. An attacker could send a carefully crafted email message to a mailing list run by Mailman which would cause the Mailman server to crash. (CVE-2005-4153).
Users of Mailman should upgrade to this updated package, which contains backported patches to correct these issues.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2005-3573
CVE-2005-4153
RHSA-2006:0204
RHSA-2006:0204-01
RHSA-2006:0204-01
|
| Platform(s): | Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux must be installed OR Package Information
Red Hat Enterprise Linux 3 is installed
AND mailman is earlier than 3:2.1.5.1-25.rhel3.4
AND mailman is signed with Red Hat master key
OR Package Information
Red Hat Enterprise Linux 4 is installed
AND mailman is earlier than 3:2.1.5.1-34.rhel4.2
AND mailman is signed with Red Hat master key
|
| Definition Synopsis |
| Red Hat Enterprise Linux must be installed
OR Package Information
Red Hat Enterprise Linux 4 is installed
AND mailman is earlier than 3:2.1.5.1-34.rhel4.2
AND mailman is signed with Red Hat redhatrelease2 key
|