mailman (1:2.1.26-1) unstable; urgency=medium * New upstream release. - Fixes XSS in user options CGI (CVE-2018-5950, closes: #888201) * Document that this is the legacy branch of Mailman and that all major development is focused on Mailman 3 (package mailman3). -- Thijs Kinkhorst <email address hidden> Sun, 04 Feb 2018 18:23:18 +0000