Mandriva Linux Security Advisory : sympa (MDVSA-2015:051)

Updated sympa packages fix security vulnerability : A vulnerability have been discovered in Sympa web interface that allows access to files on the server filesystem. This breach allows to send to a list or a user any file readable by the Sympa user, located on the server filesystem, using the Sym...

Updated sympa packages fix CVE-2015-1306

Updated sympa packages fix security vulnerability: A vulnerability have been discovered in Sympa web interface that allows access to files on the server filesystem. This breach allows to send to a list or a user any file readable by the Sympa user, located on the server filesystem, using the Symp...

[SECURITY] [DLA 148-1] sympa security update

Package : sympa Version : 6.0.1+dfsg-4+squeeze3 CVE ID : CVE-2015-1306 A vulnerability has been discovered in the web interface of sympa, a mailing list manager. An attacker could take advantage of this flaw in the newsletter posting area, which allows sending to a list, or to oneself, any file...

CVE-2015-1306

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors...

CVE-2015-1306

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors...

CVE-2015-1306

Sympa web interface vulnerability CVE-2015-1306 affects the newsletter posting area. Versions 6.0.x before 6.0.10 and 6.1.x before 6.1.24 are impacted and allow remote attackers to read arbitrary files via unspecified vectors. Multiple connected advisories indicate that updated packages fix the i...