Change logs for mailman source package in Maverick

  • mailman (1:2.1.13-4ubuntu0.2) maverick-security; urgency=low
    
      * SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
        - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
          Mailman/Cgi/confirm.py.
        - CVE-2011-0707
      * SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
        information and description fields
        - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
          Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
        - CVE-2010-3089
     -- Marc Deslauriers <email address hidden>   Thu, 17 Feb 2011 09:49:04 -0500
  • mailman (1:2.1.13-4) unstable; urgency=medium
    
      * Fix permissions on /var/lib/mailman/archives/private, so
        archiving works again. Problem introduced in 1:2.1.12-3.
      * Fix invocation of update-rc.d which yields an error when
        not using dependency-based boot (closes: #590249).
      * Checked for policy 3.9.1, no changes needed.
    
    mailman (1:2.1.13-3) unstable; urgency=low
    
      * Drop unneeded Indexes option from shipped apache.conf.
      * Eliminate update_rc.d warning by not passing runlevel 1 at stop.
      * Add 25_site_logo patch by Paul Wise (closes: #267243).
      * Do not compress PDF's under /u/s/d/mailman (closes: #582259).
      * Back up ./configure before running autoconf, so it can be restored
        in clean as not to generate irrelevant diff.gz content.
      * Switch to dpkg-source 3.0 (quilt) format.
      * Checked for policy 3.9.0, no changes needed.
     -- Dave Walker <email address hidden>   Tue, 27 Jul 2010 22:56:03 +0200
  • mailman (1:2.1.13-2) unstable; urgency=low
    
      * postfix-to-mailman.py: check for list existence before stripping off
        administrative suffixes, making it also work for mailing list names
        ending in e.g. -admin. Thanks Axel Beckert for the patch!
        (Closes: #570548)
      * Checked for policy 3.8.4, no changes.
      * Minor fixes pointed out by Lintian.
     -- Ubuntu Archive Auto-Sync <email address hidden>   Sun,  09 May 2010 13:57:05 +0100
  • mailman (1:2.1.13-1) unstable; urgency=low
    
      * New upstream release. Patches incorporated:
        - 16_update_debian (partially)
        - 30_pipermail_threads
        - 65_handle_templates_directories
        - 77_header_folding_in_attachments
      * Remove msgfmt.py, only used at build-time (closes: #555416).
      * Remove adduser calls for 'list' user. Base-passwd guarantees it
        to be available, and trying to add it if it were not present may
        lead to inconsistencies regarding expectations for that user.
      * Document second parameter of postfix-to-mailman.py to be
        ${mailbox}, effectively reverting inappropriate fix for #305762
        (closes: #549224).
     -- Ubuntu Archive Auto-Sync <email address hidden>   Mon,  18 Jan 2010 07:31:53 +0000