GNU Mailman

Arbitrary Content Injection via the private archive login page.

Bug #1877379 reported by Mark Sapiro on 2020-05-07

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	GNU Mailman	Fix Released	Low	Mark Sapiro	GNU Mailman 2.1.33

Bug Description

This is essentially the same as https://bugs.launchpad.net/mailman/+bug/1873722 except the vector is the private archive login page and the attack only succeeds if the list's roster visibility (private_roster) setting is 'Anyone'.

This is fixed by the attached patch.

Related branches

lp:mailman/2.1

CVE References

2020-15011

Revision history for this message

Mark Sapiro (msapiro) wrote on 2020-05-07:

Patch to fix this issue Edit (972 bytes, text/plain)

Mark Sapiro (msapiro) on 2020-05-07

Changed in mailman:
status:	In Progress → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

Patch to fix this issue Edit

Add patch

Remote bug watches

Bug watches keep track of this bug in other bug trackers.