7 matches found
[SECURITY] [DSA 4818-1] sympa security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4818-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 23, 2020 https://www.debian.org/security/faq -...
FreeBSD : sympa -- Denial of service caused by malformed CSRF token (9908a1cc-35ad-424d-be0b-7e56abd5931a)
Javier Moreno discovered a vulnerability in Sympa web interface that can cause denial of service DoS attack. By submitting requests with malformed parameters, this flaw allows to create junk files in Sympa's directory for temporary files. And particularly by tampering token to prevent CSRF, it...
Updated sympa packages fix security vulnerability
Updated sympa packages fix security vulnerability: Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters CVE-2020-9369...
MGASA-2020-0146 Updated sympa packages fix security vulnerability
Updated sympa packages fix security vulnerability: Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters CVE-2020-9369...
Fedora 31 : sympa (2020-79516cb689)
Update to sympa 6.2.54 : - Fixes CVE-2020-9369 - See https://sympa-community.github.io/security/2020-001.html for details Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean a...
Fedora: Security Advisory for sympa (FEDORA-2020-bb5aa250c9)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-9369
Sympa (mailing list manager) is affected by CVE-2020-9369. The vulnerability exists in 6.2.38 through 6.2.52 and allows remote attackers to cause a denial of service by sending requests with malformed parameters, triggering disk consumption via temporary files and a flood of notifications to list...