-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 14 Dec 2005 15:24:12 +0100 Source: mailman Binary: mailman Architecture: source i386 Version: 2.1.5-8sarge1 Distribution: stable-security Urgency: high Maintainer: Tollef Fog Heen <tfheen@debian.org> Changed-By: Lionel Elie Mamane <lmamane@debian.org> Description: mailman - Powerful, web-based mailing list manager Closes: 326024 339095 Changes: mailman (2.1.5-8sarge1) stable-security; urgency=high . * Don't fall apart if the filename of an attachment is an invalid UTF-8 string, which leads to a DoS attack (closes: #339095) This is CVE-2005-3573 * Don't die on overflow in date handling, which could lead to a DoS attack (closes: #326024) Files: da48d99072879f627fbba7d57f8b9449 738 mail optional mailman_2.1.5-8sarge1.dsc f6b707d6165c4e2def0a37ecaa9d0237 188686 mail optional mailman_2.1.5-8sarge1.diff.gz 6887debd5526800e45691c7f69a67004 6611458 mail optional mailman_2.1.5-8sarge1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iQCVAwUBQ9D+aA0hVr09l8FJAQL8oAP/R0tCbDcojTg1scP+/mYupWPBM9UZ/PCB o2D3bdB2iRFcHIJOK2v+RNlYF1TTOU8AU6w0uNkPYgW5aoKGnrRJYM+CEQ3yT0kP eYaaclNalBJe0YG2/NS/ZuefInDk0KTx3OOBkl5TxFuUH4uUc7sm929WMGANRH0V Z+emDFeP1Ok= =DzbX -----END PGP SIGNATURE----- Accepted: mailman_2.1.5-8sarge1.diff.gz to pool/main/m/mailman/mailman_2.1.5-8sarge1.diff.gz mailman_2.1.5-8sarge1.dsc to pool/main/m/mailman/mailman_2.1.5-8sarge1.dsc mailman_2.1.5-8sarge1_i386.deb to pool/main/m/mailman/mailman_2.1.5-8sarge1_i386.deb
