- Issued:
- 2011-09-07
- Updated:
- 2011-12-06
RHBA-2011:1275 - Bug Fix Advisory
Synopsis
mailman bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated mailman package that fixes various bugs is now available for Red Hat
Enterprise Linux 6.
Description
Mailman is a program used to help manage email discussion lists.
This update fixes the following bugs:
- Previously, a number of Python scripts and subdirectories in the
/usr/lib/mailman/ directory were group writable. As a result, the respective
files and subdirectories could have been changed not only by the owner, but also
by other users in the same user group. This undesired behavior has been resolved
in this update so that only the owner can now change the files and
subdirectories. (BZ#704699, BZ#703389)
- Because of a bug in the brp-python-compile script file, unnecessary
/etc/mailman/mm_cfg.pyc and /etc/mailman/mm_cfg.pyo files were generated under
certain circumstances. As a result, the Mailman build process could have failed.
This update fixes the aforementioned bug by compiling Python script files
manually so that the build process no longer fails. (BZ#684622)
- In accordance with current guidelines, all Python executable files have been
updated to use the Python executable file directly, that is the
"#!/usr/bin/python" string instead of "#!/usr/bin/env python". (BZ#636825)
All users of mailman are advised to upgrade to this updated package, which fixes
these bugs.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
Fixes
- BZ - 636825 - Fix instances of #!/usr/bin/env python in mailman
- BZ - 684622 - FTBFS - unpackaged files
- BZ - 703389 - several python scripts under /usr/lib/mailman/pythonlib are group writeable
- BZ - 704699 - possible security issue with mailman permissions
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| x86_64 | |
| mailman-2.1.12-17.el6.x86_64.rpm | SHA-256: 6179c9e59b54a5fe60b67d564f4a02f45752bd58b57292a8620063fd4d1b8267 |
| mailman-debuginfo-2.1.12-17.el6.x86_64.rpm | SHA-256: 4ae2d918f3418f6be90d5f2fab3aeccce9fd10d6075b126e6367e42391a198e4 |
| i386 | |
| mailman-2.1.12-17.el6.i686.rpm | SHA-256: 593dfc942d9fcc5b5bb8d8f056a77ac346b9c2a4694093c749a0d4d9d4d9de60 |
| mailman-debuginfo-2.1.12-17.el6.i686.rpm | SHA-256: f8f638365aa1a65380ddba0a0c7f11724a6539e57c1a1c86167bafe505f6f20e |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| x86_64 | |
| mailman-2.1.12-17.el6.x86_64.rpm | SHA-256: 6179c9e59b54a5fe60b67d564f4a02f45752bd58b57292a8620063fd4d1b8267 |
| mailman-debuginfo-2.1.12-17.el6.x86_64.rpm | SHA-256: 4ae2d918f3418f6be90d5f2fab3aeccce9fd10d6075b126e6367e42391a198e4 |
| i386 | |
| mailman-2.1.12-17.el6.i686.rpm | SHA-256: 593dfc942d9fcc5b5bb8d8f056a77ac346b9c2a4694093c749a0d4d9d4d9de60 |
| mailman-debuginfo-2.1.12-17.el6.i686.rpm | SHA-256: f8f638365aa1a65380ddba0a0c7f11724a6539e57c1a1c86167bafe505f6f20e |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| x86_64 | |
| mailman-2.1.12-17.el6.x86_64.rpm | SHA-256: 6179c9e59b54a5fe60b67d564f4a02f45752bd58b57292a8620063fd4d1b8267 |
| mailman-debuginfo-2.1.12-17.el6.x86_64.rpm | SHA-256: 4ae2d918f3418f6be90d5f2fab3aeccce9fd10d6075b126e6367e42391a198e4 |
| i386 | |
| mailman-2.1.12-17.el6.i686.rpm | SHA-256: 593dfc942d9fcc5b5bb8d8f056a77ac346b9c2a4694093c749a0d4d9d4d9de60 |
| mailman-debuginfo-2.1.12-17.el6.i686.rpm | SHA-256: f8f638365aa1a65380ddba0a0c7f11724a6539e57c1a1c86167bafe505f6f20e |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| x86_64 | |
| mailman-2.1.12-17.el6.x86_64.rpm | SHA-256: 6179c9e59b54a5fe60b67d564f4a02f45752bd58b57292a8620063fd4d1b8267 |
| mailman-debuginfo-2.1.12-17.el6.x86_64.rpm | SHA-256: 4ae2d918f3418f6be90d5f2fab3aeccce9fd10d6075b126e6367e42391a198e4 |
| i386 | |
| mailman-2.1.12-17.el6.i686.rpm | SHA-256: 593dfc942d9fcc5b5bb8d8f056a77ac346b9c2a4694093c749a0d4d9d4d9de60 |
| mailman-debuginfo-2.1.12-17.el6.i686.rpm | SHA-256: f8f638365aa1a65380ddba0a0c7f11724a6539e57c1a1c86167bafe505f6f20e |
Red Hat Enterprise Linux for IBM z Systems 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| s390x | |
| mailman-2.1.12-17.el6.s390x.rpm | SHA-256: dfc08aa30eb30204a648fa5c96cf43a1d8dda4e5c79374c62ab5821bc684bbc7 |
| mailman-debuginfo-2.1.12-17.el6.s390x.rpm | SHA-256: 53ec1a129f21fa0748f5fcc65789031ebcc8c58abb1af6d0a65695774dce7354 |
Red Hat Enterprise Linux for Power, big endian 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| ppc64 | |
| mailman-2.1.12-17.el6.ppc64.rpm | SHA-256: 07a9efd0e4c7968dba41ab2ec5606dc1214ba835a395852e21844c651e2ea65d |
| mailman-debuginfo-2.1.12-17.el6.ppc64.rpm | SHA-256: 774ff716b7ff2f95530ac3e4d8f4b651e71b73da39798e3e6f7b08593208aad2 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
| SRPM | |
|---|---|
| mailman-2.1.12-17.el6.src.rpm | SHA-256: dc0ababaf93c2720081eacf2041aa04dc005b6715478b1497fbd138049e7b6a7 |
| s390x | |
| mailman-2.1.12-17.el6.s390x.rpm | SHA-256: dfc08aa30eb30204a648fa5c96cf43a1d8dda4e5c79374c62ab5821bc684bbc7 |
| mailman-debuginfo-2.1.12-17.el6.s390x.rpm | SHA-256: 53ec1a129f21fa0748f5fcc65789031ebcc8c58abb1af6d0a65695774dce7354 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.