CookieError on addresses with plus and/or equal signs

The Web/CGI interface to mailmain allows the user to
set addresses where the "name" part includes "+" and
"=" chars, but chokes afterwards when trying to log in
again with such addresses (which are, I think,
perfectly fine).

For example, I registererd to the mod_python list as
<email address hidden>; after a while I changed it to
<email address hidden>, which worked all right.
But trying to access the web interface brings:

Bug in Mailman version 2.1.4

We're sorry, we hit a bug!

If you would like to help us identify the problem,
please email a copy of this page to the webmaster for
this site with a description of what happened. Thanks!
Traceback:

Traceback (most recent call last):
  File "/var/mailman/scripts/driver", line 87, in run_main
    main()
  File "/var/mailman/Mailman/Cgi/options.py", line 226,
in main
    password, user):
  File "/var/mailman/Mailman/SecurityManager.py", line
226, in WebAuthenticate
    print self.MakeCookie(ac, user)
  File "/var/mailman/Mailman/SecurityManager.py", line
240, in MakeCookie
    c[key] = binascii.hexlify(marshal.dumps((issued, mac)))
  File "/usr/lib/python2.3/Cookie.py", line 581, in
__setitem__
    self.__set(key, rval, cval)
  File "/usr/lib/python2.3/Cookie.py", line 574, in __set
    M.set(key, real_value, coded_value)
  File "/usr/lib/python2.3/Cookie.py", line 453, in set
    raise CookieError("Illegal key value: %s" % key)
CookieError: Illegal key value:
mod_python+user+xxx+list=mod-python--at--yyy.com

[etc, etc]

[http://sourceforge.net/tracker/index.php?func=detail&aid=1072217&group_id=103&atid=100103]