mailman-2.1.12-26.AXS4.3
エラータID: AXSA:2018-2616:01
Release date:
Wednesday, March 14, 2018 - 05:19
Subject:
mailman-2.1.12-26.AXS4.3
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
Moderate
Description:
Mailman is a program used to help manage e-mail discussion lists.
Security Fix(es):
* mailman: Cross-site scripting (XSS) vulnerability in web UI (CVE-2018-5950)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2018-5950
Cross-site scripting (XSS) vulnerability in the web UI in Mailman
before 2.1.26 allows remote attackers to inject arbitrary web script
or HTML via a user-options URL.
Solution:
Update packages.
CVEs:
CVE-2018-5950
Cross-site scripting (XSS) vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL.
Cross-site scripting (XSS) vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL.
Additional Info:
N/A
Download:
SRPMS
- mailman-2.1.12-26.AXS4.3.src.rpm
MD5: 9ee313ec390d944f9ecc8d60797e9419
SHA-256: 19fe7740cb84629b684fbdccdd6f583167a00ed908da4c56817ec94cc9928677
Size: 8.98 MB
Asianux Server 4 for x86
- mailman-2.1.12-26.AXS4.3.i686.rpm
MD5: f2e56bc6e28cd455de6483c64a122ca6
SHA-256: c47de411c7bb3887700a67f18597b4157a6ca302a4c574f734e65b8cf5a90712
Size: 7.33 MB
Asianux Server 4 for x86_64
- mailman-2.1.12-26.AXS4.3.x86_64.rpm
MD5: 21c1b74c0306f6cc31a3a1ab06028a03
SHA-256: 271a26c98c740dd0cf863ae3356ab353d76bec8fd5579ed56554d206d8e75714
Size: 7.35 MB