Lucene search
RedHatRHSA-2004:019HistoryFeb 09, 2004 - 12:00 a.m.
(RHSA-2004:019) mailman security update
2004-02-0900:00:00
access.redhat.com
25
EPSS
0.013
Percentile
86.4%
Mailman is a mailing list manager.
Matthew Galgoci of Red Hat discovered a Denial of Service (DoS)
vulnerability in versions of Mailman prior to 2.1. An attacker could send
a carefully-crafted message causing mailman to crash. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2003-0991 to this issue.
Users of Mailman are advised to upgrade to the erratum packages, which
include a backported security fix and are not vulnerable to this issue.
Red Hat would like to thank Barry Warsaw for providing a patch for this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ia64 | mailman | < 2.0.13-5 | mailman-2.0.13-5.ia64.rpm |
| RedHat | any | i386 | mailman | < 2.0.13-5 | mailman-2.0.13-5.i386.rpm |
Related
nessus
nessus
FreeBSD : mailman denial-of-service vulnerability in MailCommandHandler (b0e76877-67a8-11d8-80e3-0020ed76ef5a)
2009-04-23 00:00:00
RHEL 2.1 : mailman (RHSA-2004:019)
2004-07-06 00:00:00
nvd
nvd
CVE-2003-0991
2004-03-03 05:00:00
openvas
openvas
FreeBSD Ports: mailman
2008-09-04 00:00:00
FreeBSD Ports: mailman
2008-09-04 00:00:00
Debian Security Advisory DSA 436-1 (mailman)
2008-01-17 00:00:00
freebsd
freebsd
mailman denial-of-service vulnerability in MailCommandHandler
2003-11-18 00:00:00
cve
cve
CVE-2003-0991
2004-09-01 04:00:00
debiancve
debiancve
CVE-2003-0991
2004-09-01 04:00:00
cvelist
cvelist
CVE-2003-0991
2004-09-01 04:00:00
osv
osv
mailman - several vulnerabilities
2004-02-08 00:00:00
suse
suse
remote denial-of-service in openssl
2004-03-17 13:37:40
local privilege escalation in xf86/XFree86
2004-02-23 16:37:48
local privilege escalation in Linux Kernel
2004-02-18 22:19:53
debian
debian
[SECURITY] [DSA 436-2] New mailman packages fix bug introduced in DSA 436-1
2004-02-21 23:00:04
[SECURITY] [DSA 436-1] New mailman packages fix several vulnerabilities
2004-02-08 22:46:29
securityvulns
securityvulns
SUSE Security Announcement: cvs (SuSE-SA:2004:008)
2004-04-15 00:00:00