Format: 1.8 Date: Fri, 28 Oct 2016 15:19:14 -0400 Source: mailman Binary: mailman Architecture: armel armel_translations Version: 1:2.1.14-3ubuntu0.4 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: mailman - Powerful, web-based mailing list manager Changes: mailman (1:2.1.14-3ubuntu0.4) precise-security; urgency=medium . * SECURITY UPDATE: CSRF vulnerability in the admin interface - debian/patches/CVE-2016-7123.patch: add CSRF checks to Mailman/CSRFcheck.py, Mailman/Cgi/admin.py, Mailman/Defaults.py.in, Mailman/htmlformat.py. - CVE-2016-7123 * SECURITY UPDATE: CSRF vulnerability in the user options page - debian/patches/CVE-2016-6893.patch: add CSRF checks to Mailman/Cgi/admindb.py, Mailman/Cgi/edithtml.py, Mailman/Cgi/options.py, Mailman/HTMLFormatter.py, Mailman/htmlformat.py. - CVE-2016-6893 Checksums-Sha1: 32eb70218b771359069f39b328ae103035b5fc87 9630300 mailman_2.1.14-3ubuntu0.4_armel.deb 3c18f0fca01493896a6cb8b0ab3b28affe82fb96 7592 mailman-dbgsym_2.1.14-3ubuntu0.4_armel.ddeb 1080d8d3220649f8eb6092d9a02e7e14c3610dad 7907864 mailman_2.1.14-3ubuntu0.4_armel_translations.tar.gz Checksums-Sha256: a727c2a0e17f8632e41bcd36c13e2c1a9539b5ca0e2394a4534c76672e47abba 9630300 mailman_2.1.14-3ubuntu0.4_armel.deb d041c2dcc96e7a048cb21f3cde71f3c109c056a7c5ae3f8526d582cb10c280df 7592 mailman-dbgsym_2.1.14-3ubuntu0.4_armel.ddeb 299cff2b3ce1c3f98a00bd0ab940b5928c9d7a8409773fc4730b848c08209b92 7907864 mailman_2.1.14-3ubuntu0.4_armel_translations.tar.gz Files: e230b1a5d868fb347c3920a43de1be26 9630300 mail optional mailman_2.1.14-3ubuntu0.4_armel.deb 49b1efb45cceaead3cbcc5331f3a74b8 7592 mail extra mailman-dbgsym_2.1.14-3ubuntu0.4_armel.ddeb baae79e0a7a995aa7bc21ef364633e8a 7907864 raw-translations - mailman_2.1.14-3ubuntu0.4_armel_translations.tar.gz Original-Maintainer: Mailman for Debian