Mailman vulnerability
Martin Marques
martin at bugs.unl.edu.ar
Sat Oct 7 14:51:43 UTC 2006
On Thu, 5 Oct 2006, Michal Jaegermann wrote:
> On Thu, Oct 05, 2006 at 09:19:48AM -0300, Martin Marques wrote:
>> I have a FC4 web server installed and got this mailman report:
>>
>> http://www.securityfocus.com/bid/19831/discuss
>>
>> Is it to worry?
>
> Probably. See also http://rhn.redhat.com/errata/RHSA-2006-0600.html
>
> FC4 is using mailman-2.1.5-35 so fixes in sources used by
Nop.
# rpm -qa | grep mailman
mailman-2.1.8-0.FC4.1
> RHEL4, as specified by RHSA-2006-0600, will likely apply directly
> or after minimal modifications. You can produce your own
> update before something general eventually will show up.
> Add patches, edit specs and rebuild rpm.
I'm getting the source rpm, and I'll try to apply the patch.
Do I submit the src.rpm afterwards?
--
21:50:04 up 2 days, 9:07, 0 users, load average: 0.92, 0.37, 0.18
---------------------------------------------------------
Lic. Martín Marqués | SELECT 'mmarques' ||
Centro de Telemática | '@' || 'unl.edu.ar';
Universidad Nacional | DBA, Programador,
del Litoral | Administrador
---------------------------------------------------------
More information about the fedora-legacy-list
mailing list