mailman (1:2.1.26-1ubuntu0.3) bionic-security; urgency=medium * SECURITY UPDATE: Arbitrary Content Injection - debian/patches/CVE-2020-15011.diff: checks if roster private, if so log the info in Mailman/Cgi/private.py. - CVE-2020-15011 -- <email address hidden> (Leonidas S. Barbosa) Thu, 25 Jun 2020 15:20:16 -0300