| Release | Version |
|---|---|
| bullseye | 1.3.4-2+deb11u1 |
| bookworm | 1.3.8-3 |
| bookworm (security) | 1.3.8-3+deb12u1 |
| trixie | 1.3.13-1 |
| trixie (security) | 1.3.13-1+deb13u1 |
| forky | 1.3.13-1 |
| sid | 1.3.13-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-44742 | vulnerable | fixed | fixed | vulnerable | vulnerable | Postorius through 1.3.13 does not escape HTML in the message subject w ... |
| Bug | Description |
|---|---|
| CVE-2021-40347 | An issue was discovered in views/list.py in GNU Mailman Postorius befo ... |
| CVE-2021-31997 | A UNIX Symbolic Link (Symlink) Following vulnerability in python-posto ... |
| DSA / DLA | Description |
|---|---|
| DSA-6257-1 | postorius - security update |
| DSA-4970-1 | postorius - security update |