Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 416795

Summary: net-mail/sympa [SECURITY] [DSA 2477-1] sympa security update
Product: Gentoo Security Reporter: the_eccentric
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal    
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://seclists.org/fulldisclosure/2012/May/223
Whiteboard:
Package list:
Runtime testing required: ---

Description the_eccentric 2012-05-20 21:02:50 UTC 
Several vulnerabilities have been discovered in Sympa, a mailing list
manager, that allow to skip the scenario-based authorization
mechanisms. This vulnerability allows to display the archives
management page, and download and delete the list archives by
unauthorized users.


We recommend that you upgrade your sympa packages.
Comment 1 Tim Sammut (RETIRED) gentoo-dev 2012-05-20 21:57:21 UTC 
We do not have sympa in the tree. Resolving as INVALID.