RHSA-2021:4913-01 -- Redhat mailmanID: oval:org.secpod.oval:def:506617 | Date: (C)2021-12-21 (M)2022-12-12 |
Class: PATCH | Family: unix |
Mailman is a program used to help manage e-mail discussion lists. Security Fix: * mailman: CSRF token bypass allows to perform CSRF attacks and account takeover * mailman: CSRF token bypass allows to perform CSRF attacks and admin takeover * mailman: CSRF protection missing in the user options page For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 7 |