[Pkg-mailman-hackers] Re: [mm-deb] Bug#244181: CAN-2004-0182: DoSsable through message with an empty subject field
Martin Schulze
joey@infodrom.org
Sat, 17 Apr 2004 16:48:03 +0200
--ESALR2nqcUcb10U9
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Siggy Brentrup wrote:
> > Although it isn't mentioned explicitly, the phrasing suggest that this =
was a
> > bug in how CAN-2003-0038, CAN-2003-0965 and/or CAN-2003-0991 were fixed=
in
> > the Debian mailman package (as opposed to a bug in how these were addre=
ssed
> > upstream).
You may want to add these three CANs to the old changelog entry.
> I'll build mailman-2.0.14-1woody1 as soon as I get an OK from the securit=
y team.
Nobody wants this, except mailman upstream and maybe Ray. So, no go.
If you can, we'd be very glad if you could backport the security relevant
issues (single patches preferred, even as secondary resource) for the
current version of mailman in max(stable,security), whichever has the higher
version number.
Regards,
Joey
--=20
Linux - the choice of a GNU generation.
--ESALR2nqcUcb10U9
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFAgUOjW5ql+IAeqTIRAvN0AJ4w5RQgHXW5UaeN2H9Rbz+hhM/hnACggcQO
sbWywT00swzY14vHPnzvTjA=
=QiWB
-----END PGP SIGNATURE-----
--ESALR2nqcUcb10U9--