On Mon, Sep 11, 2006 at 07:59:44AM -0500, Barry Finkel wrote: > This bulletin only mentions Red Hat. Does the bulletin apply only > to Red Hat distributions, or does it apply to all Mailman distributions?
The general Mailman distribution is affected as well; see: http://sourceforge.net/project/shownotes.php?release_id=444295&group_id=103 > Is this a problem that only affects 2.1.5, or does it affect subsequent > versions of Mailman? Thanks. If you have access to Nessus, you may want to take a look at a plugin I wrote to check for the first issue mentioned: http://www.nessus.org/plugins/index.php?view=single&id=22307 [The plugin is available now to those with a direct feed and will become available tomorrow for those with a registered feed.] I run a few lists with 2.1.6 and that version is definitely vulnerable. George -- [EMAIL PROTECTED]
pgp5TG86HG67x.pgp
Description: PGP signature
------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
