Branches for Lucid

Author: Marc Deslauriers
Revision Date: 2011-02-17 10:02:48 UTC

* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
  - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
    Mailman/Cgi/confirm.py.
  - CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
  information and description fields
  - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
    Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
  - CVE-2010-3089

Author: Marc Deslauriers
Revision Date: 2011-02-17 10:02:48 UTC

* SECURITY UPDATE: Cross-Site Scripting vulnerability in confirm.py
  - debian/patches/80_CVE-2011-0707.patch: properly clean strings in
    Mailman/Cgi/confirm.py.
  - CVE-2011-0707
* SECURITY UPDATE: Cross-Site Scripting vulnerabilities in list
  information and description fields
  - debian/patches/81_CVE-2010-3089.patch: properly clean strings in
    Mailman/Cgi/{listinfo,HTMLFormatter,Utils}.py.
  - CVE-2010-3089

Author: Thijs Kinkhorst
Revision Date: 2009-12-31 15:50:29 UTC

* New upstream release. Patches incorporated:
  - 16_update_debian (partially)
  - 30_pipermail_threads
  - 65_handle_templates_directories
  - 77_header_folding_in_attachments
* Remove msgfmt.py, only used at build-time (closes: #555416).
* Remove adduser calls for 'list' user. Base-passwd guarantees it
  to be available, and trying to add it if it were not present may
  lead to inconsistencies regarding expectations for that user.
* Document second parameter of postfix-to-mailman.py to be
  ${mailbox}, effectively reverting inappropriate fix for #305762
  (closes: #549224).