TITLE: Ubuntu update for mailman SECUNIA ADVISORY ID: SA18456 VERIFY ADVISORY: http://secunia.com/advisories/18456/ CRITICAL: Moderately critical IMPACT: DoS WHERE: >From remote OPERATING SYSTEM: Ubuntu Linux 5.10 http://secunia.com/product/6606/ Ubuntu Linux 5.04 http://secunia.com/product/5036/ Ubuntu Linux 4.10 http://secunia.com/product/4491/ DESCRIPTION: Ubuntu has issued an update for mailman. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information: SA17511 SA18449 SOLUTION: Apply updated packages. -- Ubuntu 4.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-1ubuntu2.5.diff.gz Size/MD5: 128899 1686924bbacf9fefa556fd7f1e8f74dc http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-1ubuntu2.5.dsc Size/MD5: 658 65e41dc9eb2456d8189aea0eb4df64ae http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5.orig.tar.gz Size/MD5: 5745912 f5f56f04747cd4aff67427e7a45631af amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-1ubuntu2.5_amd64.deb Size/MD5: 6602720 b559d0c6c0c8d97dc6ea342a4911d154 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-1ubuntu2.5_i386.deb Size/MD5: 6602194 ad5e65cead5a9d90ddbffc736337fb94 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-1ubuntu2.5_powerpc.deb Size/MD5: 6611016 89feb8e459fa9f34ff91c8bbf75f3a80 -- Ubuntu 5.04 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-7ubuntu0.1.diff.gz Size/MD5: 118355 78b91e2f11e438ef259c3e67e6fd1d47 http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-7ubuntu0.1.dsc Size/MD5: 669 99b42b16f8c4ba4e8acacc73920d1639 http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5.orig.tar.gz Size/MD5: 5745912 f5f56f04747cd4aff67427e7a45631af amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-7ubuntu0.1_amd64.deb Size/MD5: 6609778 28b3e1f005cbcc097fb084ba3b0c313b i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-7ubuntu0.1_i386.deb Size/MD5: 6609308 f80df6c6bc8f6a028d065c8892849569 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-7ubuntu0.1_powerpc.deb Size/MD5: 6616534 f33e0b4a6d2afea8aa96f3e86fdfe579 -- Ubuntu 5.10 -- Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-8ubuntu2.1.diff.gz Size/MD5: 194039 fd67dfe7d97bd94e9ad0e0575599639d http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-8ubuntu2.1.dsc Size/MD5: 626 63366d888d62e4769c331c7303716c2e http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5.orig.tar.gz Size/MD5: 5745912 f5f56f04747cd4aff67427e7a45631af amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-8ubuntu2.1_amd64.deb Size/MD5: 6610440 165e35634f6767fbab615e9407eec4c8 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-8ubuntu2.1_i386.deb Size/MD5: 6609374 03e1822d1085b4ff27d3ecb2912048bf powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/m/mailman/mailman_2.1.5-8ubuntu2.1_powerpc.deb Size/MD5: 6617106 522653cd7ecdce70366a2d80b5b97460 ORIGINAL ADVISORY: http://www.ubuntu.com/usn/usn-242-1 OTHER REFERENCES: SA17511: http://secunia.com/advisories/17511/ SA18449: http://secunia.com/advisories/18449/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------