CentOS Errata and Security Advisory CESA-2006:0204
Mailman is software to help manage email discussion lists.
A flaw in handling of UTF8 character encodings was found in Mailman. An
attacker could send a carefully crafted email message to a mailing list run
by Mailman which would cause that particular mailing list to stop working.
The Common Vulnerabilities and Exposures project assigned the name
CVE-2005-3573 to this issue.
A flaw in date handling was found in Mailman version 2.1.4 through 2.1.6.
An attacker could send a carefully crafted email message to a mailing list
run by Mailman which would cause the Mailman server to crash. (CVE-2005-4153).
Users of Mailman should upgrade to this updated package, which contains
backported patches to correct these issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2006-March/074859.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074860.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074861.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074862.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074863.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074867.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074871.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074889.html
https://lists.centos.org/pipermail/centos-announce/2006-March/074896.html
Affected packages:
mailman
Upstream details at:
https://access.redhat.com/errata/RHSA-2006:0204
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 3 | i386 | mailman | <Â 2.1.5.1-25.rhel3.4 | mailman-2.1.5.1-25.rhel3.4.i386.rpm |
CentOS | 3 | x86_64 | mailman | <Â 2.1.5.1-25.rhel3.4 | mailman-2.1.5.1-25.rhel3.4.x86_64.rpm |
CentOS | 3 | ia64 | mailman | <Â 2.1.5.1-25.rhel3.4 | mailman-2.1.5.1-25.rhel3.4.ia64.rpm |
CentOS | 3 | s390 | mailman | <Â 2.1.5.1-25.rhel3.4 | mailman-2.1.5.1-25.rhel3.4.s390.rpm |
CentOS | 3 | s390x | mailman | <Â 2.1.5.1-25.rhel3.4 | mailman-2.1.5.1-25.rhel3.4.s390x.rpm |
CentOS | 4 | ia64 | mailman | <Â 2.1.5.1-34.rhel4.2 | mailman-2.1.5.1-34.rhel4.2.ia64.rpm |
CentOS | 4 | s390 | mailman | <Â 2.1.5.1-34.rhel4.2 | mailman-2.1.5.1-34.rhel4.2.s390.rpm |
CentOS | 4 | s390x | mailman | <Â 2.1.5.1-34.rhel4.2 | mailman-2.1.5.1-34.rhel4.2.s390x.rpm |
CentOS | 4 | alpha | mailman | <Â 2.1.5.1-34.rhel4.2 | mailman-2.1.5.1-34.rhel4.2.alpha.rpm |
CentOS | 4 | i386 | mailman | <Â 2.1.5.1-34.rhel4.2 | mailman-2.1.5.1-34.rhel4.2.i386.rpm |