Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian 12 sympa Critical Authentication Bypass Vulnerability DLA-4668-1

debian lts
Calendar Grey July 4, 2026
Dist Debian Esm H88
A flaw in Sympa's web interface allows attackers to bypass authentication in Debian LTS. Update to version 6.2.70 to fix.
A flaw was found in Sympa’s web interface, a modern mailing list manager

Summary

For Debian 12 bookworm, this problem has been fixed in version
6.2.70~dfsg-2+deb12u1.

We recommend that you upgrade your sympa packages.

For the detailed security status of sympa please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/sympa

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: sympa
Version: 6.2.70~dfsg-2+deb12u1
CVE ID: CVE-2024-55919
Debian Bug: 1090188

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here