Overview

File mailman-2.1.14-CVE-2011-0707.patch of Package mailman.openSUSE_12.1_Update

=== modified file 'Mailman/Cgi/confirm.py'
Index: Mailman/Cgi/confirm.py
===================================================================
--- Mailman/Cgi/confirm.py.orig
+++ Mailman/Cgi/confirm.py
@@ -471,7 +471,7 @@ def unsubscription_prompt(mlist, doc, co
     if fullname is None:
         fullname = _('<em>Not available</em>')
     else:
-        fullname = Utils.uncanonstr(fullname, lang)
+        fullname = Utils.websafe(Utils.uncanonstr(fullname, lang))
     table.AddRow([_("""Your confirmation is required in order to complete the
     unsubscription request from the mailing list <em>%(listname)s</em>.  You
     are currently subscribed with
@@ -573,7 +573,7 @@ def addrchange_prompt(mlist, doc, cookie
     if fullname is None:
         fullname = _('<em>Not available</em>')
     else:
-        fullname = Utils.uncanonstr(fullname, lang)
+        fullname = Utils.websafe(Utils.uncanonstr(fullname, lang))
     if globally:
         globallys = _('globally')
     else:
@@ -814,7 +814,7 @@ def reenable_prompt(mlist, doc, cookie,
     if username is None:
         username = _('<em>not available</em>')
     else:
-        username = Utils.uncanonstr(username, lang)
+        username = Utils.websafe(Utils.uncanonstr(username, lang))
 
     table.AddRow([_("""Your membership in the %(realname)s mailing list is
     currently disabled due to excessive bounces.  Your confirmation is
openSUSE Build Service is sponsored by
Places