Debian bug report indicates that it might be possible to DoS a list by sending a specially crafted email.
This has yet to be reproduced. Ccing maintainers.
mailman has been maintained by mholzer. CC'ing him.
see http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=339095;msg=35 i vote for closing the bug or watching the debian bugreport
Let's wait a bit and see what they decide.
Closed as non-security on Debian. I think we should do the same, feel free to reopen if you disagree.