GNU Mailman 2.1.38
Milestone information
- Project:
- GNU Mailman
- Series:
- 2.1
- Version:
- 2.1.38
- Released:
- Registrant:
- Mark Sapiro
- Release registered:
- Active:
- Yes. Drivers can target bugs and blueprints to this milestone.
Activities
- Assigned to you:
- No blueprints or bugs assigned to you.
- Assignees:
- 1 Mark Sapiro
- Blueprints:
- No blueprints are targeted to this milestone.
- Bugs:
- 2 Fix Released
Download files for this release
Release notes
2.1.38 (30-Nov-2021)
Security
- A potential CSRF attack against a list admin from a list member or
moderator has been blocked. CVE-2021-44227 (LP: #1952384)
Bug Fixes and other patches
- NotAMemberError exception from the user options page when the user has
been asynchronously unsubscribed is fixed. (LP: #1951769)
Changelog
This release does not have a changelog.
0 blueprints and 2 bugs targeted
Bug report | Importance | Assignee | Status | |||
---|---|---|---|---|---|---|
1952384 | #1952384 | A CSRF vulnerability could allow a list moderator or list member to access the admin UI | 4 Medium | Mark Sapiro | 10 Fix Released | |
1951769 | #1951769 | NotAMemberError Exception in user options page | 5 Low | 10 Fix Released |