Package mailman-apache2: Information

    Binary package: mailman-apache2
    Version: 2.1.37-alt1
    Architecture: noarch
    Build time:  Nov 19, 2021, 02:30 PM
    Source package: mailman
    Category: System/Servers
    Report package bug
    Build log: https://git.altlinux.org/tasks/289143/build/300/x86_64/log
    Home page: https://www.list.org/
    License: GPL-2.0-or-later
    Summary: Mailman configuration for Apache2
    Description: 
    Mailman configuration files for Apache2
    Maintainer: Dmitry V. Levin
    List of contributors:
    Dmitry V. Levin
    Konstantin Lepikhov
    Anton Farygin
    Vitaly Kuznetsov
    Eugeny A. Rostovtsev
    Grigory Batalov
    migor
    qa-robot
    Stanislav Ievlev

    Last changed

    Nov. 13, 2021 Dmitry V. Levin 5:2.1.37-alt1
    - 2.1.36 -> 2.1.37 (fixes bug in the fix for CVE-2021-43332).
    Nov. 13, 2021 Konstantin Lepikhov 5:2.1.36-alt1
    - Updated to 2.1.36.
- Security fixes:
  + CVE-2021-43331: A potential XSS attack via the user options.
  + CVE-2021-43332: A potential for for a list moderator to carry out an
                    off-line brute force attack to obtain the list
		    admin password.
    Nov. 6, 2021 Konstantin Lepikhov 5:2.1.35-alt1
    - Updated to 2.1.35:
- Security fixes:
  + CVE-2021-42096: Attack to obtain the list admin password.
  + CVE-2021-42097: A CSRF attack via the user options page
                    could allow takeover of a users
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top