-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Fedora Test Update Notification FEDORA-2004-1269 Bugzilla https://bugzilla.fedora.us/show_bug.cgi?id=1269 2004-02-23 - --------------------------------------------------------------------- Name : mailman Version 7.x : 2.0.14-0.7.x.1.legacy Version 8.0 : 2.0.14-0.8.0.1.legacy Summary : Mailing list manager with built in Web access. Description : Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from the Web. Mailman also integrates most things people want to do with mailing lists, including archiving, mail <-> news gateways, and so on. When the package has finished installing, you will need to: * Run /var/mailman/bin/mmsitepass to set the mailman administrator password. * Edit /var/mailman/Mailman/mm_cfg.py to configure Mailman for your site. * Add "Include conf/httpd-mailman.conf" to /etc/httpd/conf/httpd.conf. Users upgrading from previous releases of this package may need to move their data or adjust the configuration files to point to the locations where their data is. - --------------------------------------------------------------------- Update Information: CAN-2003-0991: Vulnerability in the mail command handler in Mailman before 2.0.14 allows remote attackers to cause a denial of service (crash) via malformed e-mail commands. - --------------------------------------------------------------------- Changelog: * Mon Feb 23 2004 Jesse Keating <jkeating@xxxxxxxxxxxxx> - - 2.0.14-0.7.x.1.legacy - - Changed to 7.x as it will work across both. * Sun Feb 08 2004 Seth Vidal <skvidal@xxxxxxxxxxxx> 2.0.14-0.7.3.1.legacy - - patch only - updates to 2.0.14 - not official tar release - - deals with CVE CAN-2003-0991 - --------------------------------------------------------------------- This update can be downloaded from: http://download.fedoralegacy.org/redhat/ c07e2c370716c93e170c7a579827ed20fbaf5321 7.2/updates-testing/SRPMS/mailman-2.0.14-0.7.x.1.legacy.src.rpm 98bfc33970d689e18dd7ddae10fab4ee90a52db9 7.2/updates-testing/i386/mailman-2.0.14-0.7.x.1.legacy.i386.rpm c07e2c370716c93e170c7a579827ed20fbaf5321 7.3/updates-testing/SRPMS/mailman-2.0.14-0.7.x.1.legacy.src.rpm 98bfc33970d689e18dd7ddae10fab4ee90a52db9 7.3/updates-testing/i386/mailman-2.0.14-0.7.x.1.legacy.i386.rpm 8877213c0c0ba8eccd0f5afcbe64c2e00d650863 8.0/updates-testing/SRPMS/mailman-2.0.14-0.8.0.1.legacy.src.rpm 05e7c4f494a10f63afb183c58086935d9ea3421c 8.0/updates-testing/i386/mailman-2.0.14-0.8.0.1.legacy.i386.rpm Please note that this update is also available via yum and apt through the updates-testing channel. Many people find this an easier way to apply updates. - --------------------------------------------------------------------- - -- Jesse Keating RHCE (http://geek.j2solutions.net) Fedora Legacy Team (http://www.fedoralegacy.org) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFAOueZ4v2HLvE71NURApukAJ4q86rU52Q2ANS49L2Y8I1d6zDwOQCfY1B9 f3DrUZlidkT9wa8mz3RjLGM= =ZTWa -----END PGP SIGNATURE-----
