Oval Definition:oval:com.redhat.rhsa:def:20060204
Revision Date:2008-03-20Version:643
Title:RHSA-2006:0204: mailman security update (Moderate)
Description:Mailman is software to help manage email discussion lists.

A flaw in handling of UTF8 character encodings was found in Mailman. An attacker could send a carefully crafted email message to a mailing list run by Mailman which would cause that particular mailing list to stop working. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-3573 to this issue.

A flaw in date handling was found in Mailman version 2.1.4 through 2.1.6. An attacker could send a carefully crafted email message to a mailing list run by Mailman which would cause the Mailman server to crash. (CVE-2005-4153).

Users of Mailman should upgrade to this updated package, which contains backported patches to correct these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-3573
CVE-2005-4153
RHSA-2006:0204
RHSA-2006:0204-01
RHSA-2006:0204-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND mailman is earlier than 3:2.1.5.1-25.rhel3.4
  • AND mailman is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND mailman is earlier than 3:2.1.5.1-34.rhel4.2
  • AND mailman is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND mailman is earlier than 3:2.1.5.1-34.rhel4.2
  • AND mailman is signed with Red Hat redhatrelease2 key
    • BACK