exploitDog

RLSA-2021:1751

Опубликовано: 18 мая 2021

Источник: rocky

Оценка: Moderate

Описание

Moderate: mailman:2.1 security update

Mailman is a program used to help manage e-mail discussion lists.

Security Fix(es):

mailman: arbitrary content injection via the options login page (CVE-2020-12108)
mailman: arbitrary content injection via the private archive login page (CVE-2020-15011)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.4 Release Notes linked from the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
mailman	x86_64	11.module+el8.4.0+539+54f8785b	mailman-2.1.29-11.module+el8.4.0+539+54f8785b.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=1848856
Red Hat - 1848856
https://bugzilla.redhat.com/show_bug.cgi?id=1850684
Red Hat - 1850684

Связанные уязвимости

ELSA-2021-1751

oracle-oval

больше 4 лет назад

ELSA-2021-1751: mailman:2.1 security update (MODERATE)

openSUSE-SU-2020:1707-1

suse-cvrf

около 5 лет назад

Recommended update for mailman

CVE-2020-12108

CVSS3: 6.5

ubuntu

больше 5 лет назад

/options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection.

CVE-2020-12108

CVSS3: 5.5

redhat

больше 5 лет назад

/options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection.

CVE-2020-12108

CVSS3: 6.5

nvd

больше 5 лет назад

/options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection.