Mandriva Linux Security Advisory reports following security vulnerability. Possible Duplicate of bug 119313 or bug 112505. Please verify and advise. -- MDKSA on Full-Disclosure mailinglist 2006/3/29 -- Mandriva Linux Security Advisory MDKSA-2006:061 http://www.mandriva.com/security/ _______________________________________________________________________ Package : mailman Date : March 29, 2006 Affected: 10.2, Corporate 3.0 _______________________________________________________________________ Problem Description: Scrubber.py, in Mailman 2.1.5 and earlier, when using email 2.5 (part of Python), is susceptible to a DoS (mailman service stops delivering for the list in question) if it encounters a badly formed mime multipart message with only one part and that part has two blank lines between the first boundary and the end boundary. Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0052
vulnerability applies to version 2.1.5 and below
we currently ship 2.1.7, thus unaffected
