First published: Mon Jun 29 2020(Updated: )
It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to inject arbitrary content in the login page.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/mailman | <1:2.1.26-1ubuntu0.3 | 1:2.1.26-1ubuntu0.3 |
=18.04 | ||
All of | ||
ubuntu/mailman | <1:2.1.20-1ubuntu0.6 | 1:2.1.20-1ubuntu0.6 |
=16.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Mailman vulnerability is CVE-2020-15011.
The severity of CVE-2020-15011 has not been provided in the given information.
The Mailman vulnerability affects Ubuntu 18.04 if it has mailman package version 1:2.1.26-1ubuntu0.3 or below.
The Mailman vulnerability affects Ubuntu 16.04 if it has mailman package version 1:2.1.20-1ubuntu0.6 or below.
To fix the Mailman vulnerability, update the mailman package to version 1:2.1.26-1ubuntu0.3 for Ubuntu 18.04, or version 1:2.1.20-1ubuntu0.6 for Ubuntu 16.04.