SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for mailman-2.1.5-5.i386.rpm :
Tue Dec 7 13:00:00 2004 PLD Team
All persons listed below can be reached at AATTpld.org.pl

$Log: mailman.spec,v $
Revision 1.71 2004/12/07 00:15:29 kloczek
- added bash completition file for mailman.

Revision 1.70 2004/12/07 00:13:50 kloczek
- release 5,
- rebuild on gcc 3.4.3,
- SECURITY FIX: added mktime_overflowerror patch stolen from SuSE
overflow in ArchRunner (Request ID 938301 on http://sourceforge.net/projects/mailman/)

Revision 1.69 2004/11/07 00:25:30 kloczek
- remove using -r in grouadd parameters.

Revision 1.68 2004/11/07 00:21:26 kloczek
- remove using -r in useradd parameters.

Revision 1.67 2004/10/04 12:25:49 kloczek
- reelase 4: rebuild on gcc 3.4.2.

Revision 1.66 2004/07/02 00:51:59 kloczek
- release 3,
- reload httpd and crond instead restart in %post/%postun,
- remove restart postfix after run newaliases (isn\'t neccessary),
- fixed permission to mailman aliases and virtual-mailman maps and hashes,
- fixed virtual host configuration in default mm_cfg.py for single host instalation,
- apache 2.x adjustments: use /etc/httpd/conf.d/ for store mailman http
frontend configuration.

Revision 1.65 2004/06/26 02:19:27 kloczek
- more work on uninstall.

Revision 1.64 2004/06/26 01:50:34 kloczek
- fixed permission on lock directory (must be 770),
- cleanups in %postun.

Revision 1.63 2004/06/26 00:32:53 kloczek
- updated to 2.1.5,
- SECURITY FIXES:
CAN-2004-0412
Mailman before 2.1.5 allows remote attackers to obtain user passwords via
a crafted email request to the Mailman server.
CAN-2003-0992
Cross-site scripting (XSS) vulnerability in the create CGI script for
Mailman before 2.1.3 allows remote attackers to steal cookies of other
users.
CAN-2003-0965
Cross-site scripting (XSS) vulnerability in the admin CGI
script for Mailman before 2.1.4 allows remote attackers to steal session
cookies and conduct unauthorized activities.
- importand bug fix: added FHS_locks patch for use
$(localstatedir)/lock/mailman for locks. Now for example in case system
crash mailmain locks are removed by init scripts before run all services
and mailman can start corrctly (without waiting for unlocking),
- added fully automated embedindg mailman during install in postfix
configuration and removing on uninstall in %post/postun scripts. It
handles managing mailman aliases and virtual_maps (in similar way can be
added support for other MTA),
- added gettext patch: use regular gettext instead hand made scripts for
handle gettext i18n support,
- added logrotate configuration file (logrotate added to Requires list),
- added ac_fixes patch for use FHS paths,
- added remove_paths.py, common.c patches: remove using paths module (now
mailman python modules can be installed in python site hierarhy),
- added setup.py patch: added setup.py file for Mailman python module for
build and install python modules in standard way,
- added master-qrunner.pid-path patch with more FHS compliance fixes: use
/var/run/mailman/ for store master-qrunner.pid file,
- added ac_do_not_check_for_mailmail_group_and_user patch: remove looking
for mailman user/group on autoconf. This patcha allow build mailman on
fresh system without this user/group,
- added Defaults patch: fixes for use in correct way Defaults module,
- added PKGLIBDIR patch: use $(pklibdir) for mailman binary and scripts,
- added paths patch: s,/usr/bin/env python,/usr/bin/python, in python
scripts preamble dor allow rpm automaticaly generate dependences for
/usr/bin/python.

Revision 1.62 2004/05/12 22:01:59 kloczek
- switch Source url to http://prdownloads.sf.net/ based.

Revision 1.61 2004/01/28 13:45:31 kloczek
- use common format for commented TODO entries.


  
ICM