Security update for mailman SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:13924-1 Final 1 1 2019-01-04T10:03:11Z current 2019-01-04T10:03:11Z 2019-01-04T10:03:11Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for mailman This update for mailman fixes the following issues: - Fixed a XSS vulnerability and information leak in user options CGI, which could be used to execute arbitrary scripts in the user's browser via specially encoded URLs (bsc#1077358 CVE-2018-5950) - Fixed a directory traversal vulnerability in MTA transports when using the recommended Mailman Transport for Exim (bsc#925502 CVE-2015-2775) - Fixed a XSS vulnerability, which allowed malicious listowners to inject scripts into the listinfo pages (bsc#1099510 CVE-2018-0618) - Fixed arbitrary text injection vulnerability in several mailman CGIs (CVE-2018-13796 bsc#1101288) - Fixed a CSRF vulnerability on the user options page (CVE-2016-6893 bsc#995352) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). sleposp3-mailman-13924,slessp3-mailman-13924,slessp4-mailman-13924 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ Link for SUSE-SU-2019:13924-1 https://lists.suse.com/pipermail/sle-security-updates/2019-January/005015.html E-Mail link for SUSE-SU-2019:13924-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1077358 SUSE Bug 1077358 https://bugzilla.suse.com/1099510 SUSE Bug 1099510 https://bugzilla.suse.com/1101288 SUSE Bug 1101288 https://bugzilla.suse.com/925502 SUSE Bug 925502 https://bugzilla.suse.com/995352 SUSE Bug 995352 https://www.suse.com/security/cve/CVE-2015-2775/ SUSE CVE CVE-2015-2775 page https://www.suse.com/security/cve/CVE-2016-6893/ SUSE CVE CVE-2016-6893 page https://www.suse.com/security/cve/CVE-2018-0618/ SUSE CVE CVE-2018-0618 page https://www.suse.com/security/cve/CVE-2018-13796/ SUSE CVE CVE-2018-13796 page https://www.suse.com/security/cve/CVE-2018-5950/ SUSE CVE CVE-2018-5950 page SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4 mailman-2.1.15-9.6.6.1 mailman-2.1.15-9.6.6.1 as a component of SUSE Linux Enterprise Point of Sale 11 SP3 mailman-2.1.15-9.6.6.1 as a component of SUSE Linux Enterprise Server 11 SP3-LTSS mailman-2.1.15-9.6.6.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA mailman-2.1.15-9.6.6.1 as a component of SUSE Linux Enterprise Server 11 SP4 mailman-2.1.15-9.6.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP4 Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name. CVE-2015-2775 SUSE Linux Enterprise Point of Sale 11 SP3:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-LTSS:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP4:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:mailman-2.1.15-9.6.6.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ https://www.suse.com/security/cve/CVE-2015-2775.html CVE-2015-2775 https://bugzilla.suse.com/925502 SUSE Bug 925502 Cross-site request forgery (CSRF) vulnerability in the user options page in GNU Mailman 2.1.x before 2.1.23 allows remote attackers to hijack the authentication of arbitrary users for requests that modify an option, as demonstrated by gaining access to the credentials of a victim's account. CVE-2016-6893 SUSE Linux Enterprise Point of Sale 11 SP3:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-LTSS:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP4:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:mailman-2.1.15-9.6.6.1 low 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ https://www.suse.com/security/cve/CVE-2016-6893.html CVE-2016-6893 https://bugzilla.suse.com/995352 SUSE Bug 995352 https://bugzilla.suse.com/997205 SUSE Bug 997205 Cross-site scripting vulnerability in Mailman 2.1.26 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. CVE-2018-0618 SUSE Linux Enterprise Point of Sale 11 SP3:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-LTSS:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP4:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:mailman-2.1.15-9.6.6.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ https://www.suse.com/security/cve/CVE-2018-0618.html CVE-2018-0618 https://bugzilla.suse.com/1099510 SUSE Bug 1099510 An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site. CVE-2018-13796 SUSE Linux Enterprise Point of Sale 11 SP3:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-LTSS:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP4:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:mailman-2.1.15-9.6.6.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ https://www.suse.com/security/cve/CVE-2018-13796.html CVE-2018-13796 https://bugzilla.suse.com/1101288 SUSE Bug 1101288 Cross-site scripting (XSS) vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL. CVE-2018-5950 SUSE Linux Enterprise Point of Sale 11 SP3:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-LTSS:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server 11 SP4:mailman-2.1.15-9.6.6.1 SUSE Linux Enterprise Server for SAP Applications 11 SP4:mailman-2.1.15-9.6.6.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-201913924-1/ https://www.suse.com/security/cve/CVE-2018-5950.html CVE-2018-5950 https://bugzilla.suse.com/1077358 SUSE Bug 1077358