GNU Mailman Error Page Cross Site Scripting Vulnerability
The vendor has confirmed this issue and has released a fix. The vendor has reported that the changes will be applied in GNU Mailman 2.1.1 when it is made available.
Gentoo Linux has released an advisory. Users are urged to update their systems to mailman-2.1.1 by issuing the following commands:
emerge -u mailman
Debian has released an advisory DSA-436-1 to address this issue. Please see the referenced advisory for more information.
GNU Mailman 2.1