Fixed content injection vulnerability via the private login page.

author: Mark Sapiro <mark@msapiro.net> 2020-05-07 06:53:40 -0700
committer: Mark Sapiro <mark@msapiro.net> 2020-05-07 06:53:40 -0700
commit: 80d4f2a79a1e461a9e434062e02239ccc2448749 (patch)
tree: a62517448a4d7945995f74e9739d0574ba5d7033 /NEWS
parent: f7ec5a7da93b99d385b353ac6505719834cb764e (diff)
download: mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.tar.gz
mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.tar.xz
mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index fb8baa05..9208567a 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,13 @@ Copyright (C) 1998-2018 by the Free Software Foundation, Inc.
 
 Here is a history of user visible changes to Mailman.
 
+2.1.33 (07-May-2020)
+
+  Security
+
+    - A content injection vulnerability via the private login page has been
+      fixed.  (LP: #1877379)
+
 2.1.32 (05-May-2020)
 
   i18n
author	Mark Sapiro <mark@msapiro.net>	2020-05-07 06:53:40 -0700
committer	Mark Sapiro <mark@msapiro.net>	2020-05-07 06:53:40 -0700
commit	80d4f2a79a1e461a9e434062e02239ccc2448749 (patch)
tree	a62517448a4d7945995f74e9739d0574ba5d7033 /NEWS
parent	f7ec5a7da93b99d385b353ac6505719834cb764e (diff)
download	mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.tar.gz mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.tar.xz mailman2-80d4f2a79a1e461a9e434062e02239ccc2448749.zip