Some usefull informations regarding the vulnerability and the versions
of Sympa fixing it can found on the security advisories page of the
Sympa web site:
https://www.sympa.org/security_advisories
Regards,
David
Le 14/05/12 16:45, Micah Anderson a écrit :
Package: sympa
Version: 6.0.1+dfsg-
Package: sympa
Version: 6.0.1+dfsg-4
Severity: grave
Tags: security patch
Justification: user security hole
It is possible to open the archive management ("arc_manage") page
for any list, even those set to only be available to members,
giving anyone the option to download the archive, or delete th
2 matches
Mail list logo
