|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu USN-586-1 (mailman)|
|Summary:||Ubuntu USN-586-1 (mailman)|
The remote host is missing an update to mailman
announced via advisory USN-586-1.
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.
Multiple cross-site scripting flaws were discovered in mailman.
A malicious list administrator could exploit this to execute arbitrary
The problem can be corrected by upgrading your system to the
following package versions:
Ubuntu 6.06 LTS:
In general, a standard system upgrade is sufficient to effect the
NOTE: Due to an internal release testing mistake, earlier
published mailman versions 1:2.1.9-4ubuntu1.1 (for Ubuntu
7.04) and 1:2.1.9-8ubuntu0.1 (for Ubuntu 7.10) accidentally
included an incorrect patch and caused a regression, as reported in
This update includes fixes for the problem. We apologize for the
Risk factor : Medium
Common Vulnerability Exposure (CVE) ID: CVE-2008-0564|
Bugtraq: 20080215 rPSA-2008-0056-1 mailman (Google Search)
SuSE Security Announcement: SUSE-SR:2008:017 (Google Search)
BugTraq ID: 27630
|Copyright||Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com|
|This is only one of 38680 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.