------------------------------------------------------------ revno: 1785 committer: Mark Sapiro <m...@msapiro.net> branch nick: 2.1 timestamp: Sun 2018-06-24 19:50:53 -0700 message: Added a CVE reference. modified: NEWS
-- lp:mailman/2.1 https://code.launchpad.net/~mailman-coders/mailman/2.1 Your team Mailman Checkins is subscribed to branch lp:mailman/2.1. To unsubscribe from this branch go to https://code.launchpad.net/~mailman-coders/mailman/2.1/+edit-subscription
=== modified file 'NEWS' --- NEWS 2018-06-22 15:41:29 +0000 +++ NEWS 2018-06-25 02:50:53 +0000 @@ -11,10 +11,10 @@ - Existing protections against malicious listowners injecting evil scripts into listinfo pages have had a few more checks added. - JVN#00846677/JPCERT#97432283 + JVN#00846677/JPCERT#97432283/CVE-2018-0618 - A few more error messages have had their values HTML escaped. - JVN#00846677/JPCERT#97432283 + JVN#00846677/JPCERT#97432283/CVE-2018-0618 - The hash generated when SUBSCRIBE_FORM_SECRET is set could have been the same as one generated at the same time for a different list and
_______________________________________________ Mailman-checkins mailing list Mailman-checkins@python.org Unsubscribe: https://mail.python.org/mailman/options/mailman-checkins/archive%40jab.org