[Mailman-Users] Fix for cross-site scripting bug in Mailman 2.1.0

Barry A. Warsaw Sun, 26 Jan 2003 13:59:09 -0800

The cross-site scripting bug in Mailman 2.1.0 that was reported on
Bugtraq has been fixed.  My thanks to all who reported this (except
unfortunately the person who posted it to bugtraq before contacting me
first. :/ ).  Special thanks to Tokio Kikuchi who worked out the
essential fix.


The patch is at:

    http://sourceforge.net/project/showfiles.php?group_id=103

(see the file xss-2.1.0-patch.txt)

And the original Bugtraq announcement is here:

    http://online.securityfocus.com/archive/1/308154

This patch will be part of Mailman 2.1.1 which is nearing release.

-Barry

------------------------------------------------------
Mailman-Users mailing list
[EMAIL PROTECTED]
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/

This message was sent to: archive@jab.org
Unsubscribe or change your options at
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

[Mailman-Users] Fix for cross-site scripting bug in Mailman 2.1.0

Reply via email to