Information on source package sympa

Available versions

ReleaseVersion
jessie6.1.23~dfsg-2+deb8u1
jessie (security)6.1.23~dfsg-2+deb8u3
stretch6.2.16~dfsg-3
stretch (security)6.2.16~dfsg-3+deb9u1
buster6.2.32~dfsg-2
sid6.2.32~dfsg-2

Open issues

BugjessiestretchbustersidDescription
CVE-2018-1000671fixedvulnerable (no DSA)vulnerablevulnerablesympa version 6.2.16 and later contains a CWE-601: URL Redirection to ...

Resolved issues

BugDescription
CVE-2018-1000550The Sympa Community Sympa version prior to version 6.2.32 contains a ...
CVE-2015-1306The newsletter posting area in the web interface in Sympa 6.0.x before ...
CVE-2012-2352The archive management (arc_manage) page in wwsympa/wwsympa.fcgi.in in ...
CVE-2008-4476sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary ...
CVE-2008-1648Sympa before 5.4 allows remote attackers to cause a denial of service ...
CVE-2005-0073Buffer overflow in queue.c in a support script for sympa 3.3.3, when ...
CVE-2004-1735Cross-site scripting (XSS) vulnerability in the create list option in ...

Security announcements

DSA / DLADescription
DLA-1512-1sympa - security update
DSA-4285-1sympa - security update
DLA-1441-1sympa - security update
DLA-148-1sympa - security update
DSA-3134-1sympa - security update
DSA-2477-1sympa - authorization bypass
DSA-1600-1sympa - denial of service
DSA-677-1sympa - buffer overflow

Search for package or bug name: Reporting problems