USN-345-1: mailman vulnerabilities

Ubuntu Security Notice USN-345-1

13th September, 2006

mailman vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 6.06 LTS
  • Ubuntu 5.10
  • Ubuntu 5.04

Details

Steve Alexander discovered that mailman did not properly handle
attachments with special filenames. A remote user could exploit that
to stop mail delivery until the server administrator manually cleaned
these posts. (CVE-2006-2941)

Various cross-site scripting vulnerabilities have been reported by
Barry Warsaw. By using specially crafted email addresses, names, and
similar arbitrary user-defined strings, a remote attacker could
exploit this to run web script code in the list administrator's
web browser. (CVE-2006-3636)

URLs logged to the error log file are now checked for invalid
characters. Before, specially crafted URLs could inject arbitrary
messages into the log.

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 6.06 LTS:
mailman 2.1.5-9ubuntu4.1
Ubuntu 5.10:
mailman 2.1.5-8ubuntu2.3
Ubuntu 5.04:
mailman 2.1.5-7ubuntu0.3

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system upgrade is sufficient to effect the
necessary changes.

References

CVE-2006-2941, CVE-2006-3636