Branches for Dapper

Author: Martin Pitt
Revision Date: 2006-04-03 14:28:08 UTC

* Security update: Remote DoS.
* Add debian/patches/72_mime_None_payload.dpatch:
  - Do not crash if python's email module returns None for the payload of a
    MIME part. This can happen for message/delivery-status or parts that
    contain only two blank lines.
  - See upstream bug reports and CVS patch:
    https://sourceforge.net/tracker/?func=detail&atid=100103&aid=1430236&group_id=103
    https://sourceforge.net/tracker/?func=detail&atid=100103&aid=1099138&group_id=103
    http://cvs.sourceforge.net/viewcvs.py/mailman/mailman/Mailman/
    Handlers/Scrubber.py?r1=2.18.2.22&r2=2.18.2.23&diff_format=u
* CVE-2006-0052

Author: Marc Deslauriers
Revision Date: 2011-02-17 10:14:56 UTC

* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
  - debian/patches/101_CVE-2011-0707.dpatch: properly clean strings in
    Mailman/Cgi/confirm.py.
  - CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
  information and description fields
  - debian/patches/102_CVE-2010-3089.dpatch: properly clean strings in
    Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
  - CVE-2010-3089

Author: Marc Deslauriers
Revision Date: 2011-02-17 10:14:56 UTC

* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
  - debian/patches/101_CVE-2011-0707.dpatch: properly clean strings in
    Mailman/Cgi/confirm.py.
  - CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
  information and description fields
  - debian/patches/102_CVE-2010-3089.dpatch: properly clean strings in
    Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
  - CVE-2010-3089