What Are You Looking For?

Popular Tags

Sign Up
--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2023-271b912b2b
2023-06-11 02:01:36.946071
--------------------------------------------------------------------------------Name        : sympa
Product     : Fedora 38
Version     : 6.2.72
Release     : 2.fc38
URL         : https://www.sympa.org
Summary     : Powerful multilingual List Manager
Description :
Sympa is scalable and highly customizable mailing list manager. It
can cope with big lists (200,000 subscribers) and comes with a
complete (user and admin) Web interface. It is internationalized,
and supports the us, fr, de, es, it, fi, and chinese locales. A
scripting language allows you to extend the behavior of commands.
Sympa can be linked to an LDAP directory or an RDBMS to create
dynamic mailing lists. Sympa provides S/MIME-based authentication
and encryption.

--------------------------------------------------------------------------------Update Information:

Update to sympa 6.2.72  Fixes CVE-2021-32850  For details, see:
https://github.com/sympa-community/sympa/releases/tag/6.2.72
--------------------------------------------------------------------------------ChangeLog:

* Thu Jun  1 2023 Xavier Bachelot  6.2.72-1
- Update to 6.2.72 (fixes CVE-2021-4243)
- Convert License: to SPDX
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #2156473 - CVE-2021-4243 sympa: jquery-minicolors: potential XSS when using untrusted code for swatch names [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2156473
  [ 2 ] Bug #2171951 - CVE-2021-32850 sympa: jquery-minicolors: cross-site scripting when handling untrusted color names [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2171951
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-271b912b2b' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 38: sympa 2023-271b912b2b

June 11, 2023
Update to sympa 6.2.72 Fixes CVE-2021-32850 For details, see: https://github.com/sympa-community/sympa/releases/tag/6.2.72

Summary

Sympa is scalable and highly customizable mailing list manager. It

can cope with big lists (200,000 subscribers) and comes with a

complete (user and admin) Web interface. It is internationalized,

and supports the us, fr, de, es, it, fi, and chinese locales. A

scripting language allows you to extend the behavior of commands.

Sympa can be linked to an LDAP directory or an RDBMS to create

dynamic mailing lists. Sympa provides S/MIME-based authentication

and encryption.

Update to sympa 6.2.72 Fixes CVE-2021-32850 For details, see:

https://github.com/sympa-community/sympa/releases/tag/6.2.72

* Thu Jun 1 2023 Xavier Bachelot 6.2.72-1

- Update to 6.2.72 (fixes CVE-2021-4243)

- Convert License: to SPDX

[ 1 ] Bug #2156473 - CVE-2021-4243 sympa: jquery-minicolors: potential XSS when using untrusted code for swatch names [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2156473

[ 2 ] Bug #2171951 - CVE-2021-32850 sympa: jquery-minicolors: cross-site scripting when handling untrusted color names [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2171951

su -c 'dnf upgrade --advisory FEDORA-2023-271b912b2b' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

package-announce mailing list -- [email protected]

To unsubscribe send an email to [email protected]

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/[email protected]

Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

FEDORA-2023-271b912b2b 2023-06-11 02:01:36.946071 Product : Fedora 38 Version : 6.2.72 Release : 2.fc38 URL : https://www.sympa.org Summary : Powerful multilingual List Manager Description : Sympa is scalable and highly customizable mailing list manager. It can cope with big lists (200,000 subscribers) and comes with a complete (user and admin) Web interface. It is internationalized, and supports the us, fr, de, es, it, fi, and chinese locales. A scripting language allows you to extend the behavior of commands. Sympa can be linked to an LDAP directory or an RDBMS to create dynamic mailing lists. Sympa provides S/MIME-based authentication and encryption. Update to sympa 6.2.72 Fixes CVE-2021-32850 For details, see: https://github.com/sympa-community/sympa/releases/tag/6.2.72 * Thu Jun 1 2023 Xavier Bachelot 6.2.72-1 - Update to 6.2.72 (fixes CVE-2021-4243) - Convert License: to SPDX [ 1 ] Bug #2156473 - CVE-2021-4243 sympa: jquery-minicolors: potential XSS when using untrusted code for swatch names [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2156473 [ 2 ] Bug #2171951 - CVE-2021-32850 sympa: jquery-minicolors: cross-site scripting when handling untrusted color names [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2171951 su -c 'dnf upgrade --advisory FEDORA-2023-271b912b2b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys package-announce mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Change Log

References

Update Instructions

Severity
Product : Fedora 38
Version : 6.2.72
Release : 2.fc38
URL : https://www.sympa.org
Summary : Powerful multilingual List Manager

Related News

Long-term Support for Linux Kernel to Be Cut as Maintenance Remains Under Strain

Sep 21, 2023

RISC-V With Linux 6.6 Offers Better Kernel Security With KASLR

Sep 11, 2023

Microsoft's CBL-Mariner 2.0 Linux Distribution Adds Clippy

Aug 4, 2023

Hackers Deploy "SUBMARINE" Backdoor in Barracuda Email Security Gateway Attacks

Jul 29, 2023

News

Advisories

HOWTOs

Features

Everything You Need to Know About Linux Proxy Servers
Simple Steps for Identifying & Troubleshooting a Kernel Panic
Linux Endpoint Detection and Response (EDR): A Crucial Part of a Successful Cybersecurity Strategy
Supercharging Linux: Tips & Tricks to Beat the Threat Landscape
LinuxSecurity.com Migrates to Joomla 4 and PHP 8: Our Experience & Key Takeaways

About Us

Powered By

Footer Logo

Feedback