From owner-freebsd-ports-bugs@FreeBSD.ORG  Wed Nov  3 15:30:11 2010
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 0B5CB1065695
	for <freebsd-ports-bugs@hub.freebsd.org>;
	Wed,  3 Nov 2010 15:30:11 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id DCE588FC13
	for <freebsd-ports-bugs@hub.freebsd.org>;
	Wed,  3 Nov 2010 15:30:10 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id oA3FUAvT045875
	for <freebsd-ports-bugs@freefall.freebsd.org>;
	Wed, 3 Nov 2010 15:30:10 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id oA3FUAOn045869;
	Wed, 3 Nov 2010 15:30:10 GMT (envelope-from gnats)
Resent-Date: Wed, 3 Nov 2010 15:30:10 GMT
Resent-Message-Id: <201011031530.oA3FUAOn045869@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-ports-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
	Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 29BFD1065670
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed,  3 Nov 2010 15:27:44 +0000 (UTC)
	(envelope-from rea-fbsd@codelabs.ru)
Received: from 0.mx.codelabs.ru (0.mx.codelabs.ru [144.206.177.45])
	by mx1.freebsd.org (Postfix) with ESMTP id 9EB598FC14
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed,  3 Nov 2010 15:27:43 +0000 (UTC)
Received: from void.codelabs.ru (void.codelabs.ru [144.206.177.25])
	by 0.mx.codelabs.ru with esmtps (TLSv1:CAMELLIA256-SHA:256)
	id 1PDfFW-000EDk-Lb for FreeBSD-gnats-submit@freebsd.org;
	Wed, 03 Nov 2010 18:27:42 +0300
Message-Id: <20101103152742.7F16EDA81F@void.codelabs.ru>
Date: Wed,  3 Nov 2010 18:27:42 +0300 (MSK)
From: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
To: FreeBSD-gnats-submit@FreeBSD.org
X-Send-Pr-Version: 3.113
Cc: 
Subject: ports/151918: [vuxml] mail/mailman: document XSS in 2.1.13 and lower
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Nov 2010 15:30:11 -0000


>Number:         151918
>Category:       ports
>Synopsis:       [vuxml] mail/mailman: document XSS in 2.1.13 and lower
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Nov 03 15:30:10 UTC 2010
>Closed-Date:
>Last-Modified:
>Originator:     Eygene Ryabinkin
>Release:        FreeBSD 9.0-CURRENT amd64
>Organization:
Code Labs
>Environment:

System: FreeBSD 9.0-CURRENT amd64

>Description:

There was an XSS vulnerability in Mailman 2.1.13 and prior: [1]

>How-To-Repeat:

[1] http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-3089

>Fix:

The port is already at 2.1.14, so only VuXML entry is needed.

The following VuXML entry should be evaluated and added:
--- vuln.xml begins here ---
  <vuln vid="132024b9-e74e-11df-bc65-0022156e8794">
    <topic>Mailman -- cross-site scripting in Web interface</topic>
    <affects>
      <package>
        <name>mailman</name>
        <range><lt>2.1.14</lt></range>
      </package>
    </affects>
    <description>
      <body xmlns="http://www.w3.org/1999/xhtml">
        <p>Secunia reports:</p>
        <blockquote
          cite="http://secunia.com/advisories/41265">
          <p>Two vulnerabilities have been reported in Mailman, which
          can be exploited by malicious users to conduct script
          insertion attacks.</p>
          <p>Certain input passed via the list descriptions is not
          properly sanitised before being displayed to the user. This
          can be exploited to insert arbitrary HTML and script code,
          which will be executed in a user's browser session in context
          of an affected site when the malicious data is being
          viewed.</p>
          <p>Successful exploitation requires "list owner"
          permissions.</p>
        </blockquote>
      </body>
    </description>
    <references>
      <bid>43187</bid>
      <cvename>CVE-2010-3089</cvename>
      <url>http://secunia.com/advisories/41265</url>
    </references>
    <dates>
      <discovery>2010-09-14</discovery>
      <entry>TODAY</entry>
    </dates>
  </vuln>
--- vuln.xml ends here ---
It passes 'make validate' for me.
>Release-Note:
>Audit-Trail:
>Unformatted: