mailman security update

🗓️ 26 Jul 2015 14:12:20Reported by CentOS ProjectType

Mailman security update fixes code execution and private message disclosure vulnerabilities. Also, resolves DMARC and DKIM configuration issues, email encoding, list removal, message approval, and archive directory access problems

Reporter	Title	Published	Views	Family All 87
ALT Linux	Security fix for the ALT Linux 9 package mailman version 5:2.1.21-alt0.1.rc2	5 Feb 201600:00	–	altlinux
FreeBSD	mailman -- path traversal vulnerability	27 Mar 201500:00	–	freebsd
Amazon	Medium: mailman	17 Aug 201500:00	–	amazon
Tenable Nessus	Amazon Linux AMI : mailman (ALAS-2015-582)	18 Aug 201500:00	–	nessus
Tenable Nessus	CentOS 7 : mailman (CESA-2015:1153)	24 Jun 201500:00	–	nessus
Tenable Nessus	CentOS 6 : mailman (CESA-2015:1417)	28 Jul 201500:00	–	nessus
Tenable Nessus	Debian DLA-186-1 : mailman security update	7 Apr 201500:00	–	nessus
Tenable Nessus	Debian DSA-3214-1 : mailman - security update	8 Apr 201500:00	–	nessus
Tenable Nessus	Fedora 21 : mailman-2.1.20-1.fc21 (2015-5216)	4 May 201500:00	–	nessus
Tenable Nessus	Fedora 22 : mailman-2.1.20-1.fc22 (2015-5333)	22 Apr 201500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	6	i686	mailman	2.1.12-25.el6	mailman-2.1.12-25.el6.i686.rpm
CentOS	6	x86_64	mailman	2.1.12-25.el6	mailman-2.1.12-25.el6.x86_64.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/
rhn	www.rhn.redhat.com/errata/RHSA-2015-1417.html

26 Jul 2015 14:12Current

7.2High risk

Vulners AI Score7.2

CVSS 27.6

EPSS0.06687