AlmaLinux 2324 Published by

A mailman:2.1 security update has been released for AlmaLinux.



ALSA-2021:1751 Moderate: mailman:2.1 security update


Type:
security

Severity:
moderate

Release date:
2021-05-18

Description
Security Fix(es):
* mailman: arbitrary content injection via the options login page (CVE-2020-12108)
* mailman: arbitrary content injection via the private archive login page (CVE-2020-15011)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:
CVE-2020-12108
CVE-2020-15011

Updates packages:
mailman-2.1.29-11.module_el8.4.0+2094+5e2c6e6e.x86_64.rpm

Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2021:1751 Moderate: mailman:2.1 security update