- Vulnerability/
- USN-4354-1
USN-4354-1: Mailman vulnerability
First published: Mon May 11 2020(Updated: )
It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to inject arbitrary content in the login page.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/mailman | <1:2.1.26-1ubuntu0.2 | 1:2.1.26-1ubuntu0.2 |
| Ubuntu Linux | =18.04 | |
| All of | ||
| ubuntu/mailman | <1:2.1.20-1ubuntu0.5 | 1:2.1.20-1ubuntu0.5 |
| Ubuntu Linux | =16.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Mailman vulnerability?
The vulnerability ID for this Mailman vulnerability is USN-4354-1.
What is the severity of the Mailman vulnerability?
The severity of the Mailman vulnerability is not mentioned in the provided information.
How can an attacker exploit this vulnerability?
An attacker could possibly inject arbitrary content in the Mailman login page using this vulnerability.
Which versions of Mailman are affected by this vulnerability?
Mailman versions 1:2.1.26-1ubuntu0.2 and 1:2.1.20-1ubuntu0.5 are affected by this vulnerability.
How can I fix the Mailman vulnerability?
To fix the Mailman vulnerability, update to version 1:2.1.26-1ubuntu0.2 or 1:2.1.20-1ubuntu0.5 depending on the affected version.
- agent/severity
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/references
- agent/title
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/usn
- source/Ubuntu
- anchor-related/USN-5121-2
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/18.04
- version/ubuntu linux/16.04