Security News

Cybersecurity news aggregator

🐧
MEDIUM Updates Debian Security

DSA-6257-1 postorius - security update

cve-2026-44742debian
  • What: Security update for Postorius
  • Impact: Addresses cross-site scripting vulnerability in Debian
Read Full Article →

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6257-1] postorius security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6257-1] postorius security update From: Moritz Muehlenhoff <jmm@debian.org> Date: Fri, 8 May 2026 18:54:02 +0000 Message-id: <[🔎] af4xSmwbHW85uhTh@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6257-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff May 08, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : postorius CVE ID : CVE-2026-44742 A cross-site scripting vulnerability was discovered in Postorius, the administrative web frontend for Mailman 3. For the oldstable distribution (bookworm), this problem has been fixed in version 1.3.8-3+deb12u1. For the stable distribution (trixie), this problem has been fixed in version 1.3.13-1+deb13u1. We recommend that you upgrade your postorius packages. For the detailed security status of postorius please refer to its security tracker page at: https://security-tracker.debian.org/tracker/postorius Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmn+MR0ACgkQEMKTtsN8 TjYkxBAAt7IuFy85ApzSqW4EzmJK88+VzxRrkWOMxp4oq4iedAIcGYv6sYUtxR53 Bz3XlGuCgY3ZbsjxRKL+XDqsWvNZf34H7t8VME0RxLafA3uzXuKLXwJXn+cghrPc RtaTQqZsl2jbUTNF1V7E9QR0SGUsURln7bD3pFkU8UR98sRUzILZklgyMgFb0vlL hiYne4mZ5R93XMsDAqr8r0Jp6x5442J7zhI1JAY9SNc4FgCFelgWFduNQNN2No/5 4I4/aommlWqRLC/vk035PVxVzsFUurBfPFdLpNb8hR/tPfHvw2ow1gaIDWR30F9P or91cqBNyJQc3n5Xr+FDNL7KG/YB487MxHtFnWYHHgT1pc3Q4Ka7NnTVj3V8+OKZ lCMh2zAP6yUX0UhmaBl74gvtibF52Z/EFKMeByFWb/3QM4DJ4PIUXCPgfumf+l/S je/G49/FCK3VGXmcXxGYMV/0yaIKl+RU4ga3KD9YUbCNw8YMJ2hOan4UBB079mAh h6SlzE+iEhKbLhnxLzZLU8PEFuNoNYv0o+RPMNVo9Lx2uoCB89VIpRvxulTUZ9Jw CVndf6ISYgtX2tg4n0m43mAieaCAcxY0C2m2fCNEbeBC/lS4D2CvSfaMHuC/2Wpw MfcZgNxasctrhw+/q2QIyoMbUkpSXPGOPqaI66x7cYhIlwZpPL0= =JNIv -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Moritz Muehlenhoff (on-list) Moritz Muehlenhoff (off-list) Prev by Date: [SECURITY] [DSA 6256-1] php8.4 security update Previous by thread: [SECURITY] [DSA 6256-1] php8.4 security update Index(es): Date Thread

Related Articles

INFO USN-8253-1: Postfix vulnerability Ubuntu Security MEDIUM DSA-6174-1 spip - security update Debian Security LOW DSA-6155-1 spip - security update Debian Security MEDIUM USN-8067-1: Mailman vulnerability Ubuntu Security
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn