GNU Mailman

GNU Mailman 2.1.38

Milestone information

Project:
GNU Mailman
Series:
2.1
Version:
2.1.38
Released:
 
Registrant:
Mark Sapiro
Release registered:
Active:
Yes. Drivers can target bugs and blueprints to this milestone.  

Download RDF metadata

Activities

Assigned to you:
No blueprints or bugs assigned to you.
Assignees:
1 Mark Sapiro
Blueprints:
No blueprints are targeted to this milestone.
Bugs:
2 Fix Released

Download files for this release

After you've downloaded a file, you can verify its authenticity using its MD5 sum or signature. (How do I verify a download?)

File Description Downloads
download icon mailman-2.1.38.tgz (md5, sig) Mailman 2.1.38 release 220
last downloaded 8 days ago
Total downloads: 220

Release notes 

2.1.38 (30-Nov-2021)

  Security

    - A potential CSRF attack against a list admin from a list member or
      moderator has been blocked. CVE-2021-44227 (LP: #1952384)

  Bug Fixes and other patches

    - NotAMemberError exception from the user options page when the user has
      been asynchronously unsubscribed is fixed. (LP: #1951769)

Changelog 

This release does not have a changelog.

0 blueprints and 2 bugs targeted

Bug report Importance Assignee Status
1952384 #1952384 A CSRF vulnerability could allow a list moderator or list member to access the admin UI 4 Medium Mark Sapiro  10 Fix Released
1951769 #1951769 NotAMemberError Exception in user options page 5 Low   10 Fix Released
This milestone contains Public information
Everyone can see this information.