ELSA-2021-4916

Опубликовано: 02 дек. 2021

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2021-4916: mailman:2.1 security update (IMPORTANT)

[3:2.1.29-12.2]

Fix for CVE-2021-44227
Resolves: #2026871

[3:2.1.29-12.1]

Fix for CVE-2021-42096
Fix for CVE-2021-42097
Resolves: #2021139, #2020692

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module mailman:2.1 is enabled

mailman

2.1.29-12.module+el8.5.0+20436+78a1860c.2

Oracle Linux x86_64

Module mailman:2.1 is enabled

mailman

2.1.29-12.module+el8.5.0+20436+78a1860c.2

Связанные CVE

CVE-2021-44227

Ссылки на источники

Связанные уязвимости

CVE-2021-44227

CVSS3: 8.8

ubuntu

больше 3 лет назад

In GNU Mailman before 2.1.38, a list member or moderator can get a CSRF token and craft an admin request (using that token) to set a new admin password or make other changes.

CVE-2021-44227

CVSS3: 8

redhat

больше 3 лет назад

In GNU Mailman before 2.1.38, a list member or moderator can get a CSRF token and craft an admin request (using that token) to set a new admin password or make other changes.

CVE-2021-44227

CVSS3: 8.8

nvd

больше 3 лет назад

In GNU Mailman before 2.1.38, a list member or moderator can get a CSRF token and craft an admin request (using that token) to set a new admin password or make other changes.

CVE-2021-44227

CVSS3: 8.8

debian

больше 3 лет назад

In GNU Mailman before 2.1.38, a list member or moderator can get a CSR ...

RLSA-2021:4916

rocky

больше 3 лет назад

Important: mailman:2.1 security update