spamassassin-3.4.0-6.el7
エラータID: AXSA:2020-599:03
Release date:
Tuesday, October 6, 2020 - 12:19
Subject:
spamassassin-3.4.0-6.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
The SpamAssassin tool provides a way to reduce unsolicited commercial email (spam) from incoming email.
Security Fix(es):
* spamassassin: crafted email message can lead to DoS (CVE-2019-12420)
CVE-2019-12420
In Apache SpamAssassin before 3.4.3, a message can be crafted in a way to use excessive resources. Upgrading to SA 3.4.3 as soon as possible is the recommended fix but details will not be shared publicly.
Solution:
Update packages.
CVEs:
CVE-2019-12420
In Apache SpamAssassin before 3.4.3, a message can be crafted in a way to use excessive resources. Upgrading to SA 3.4.3 as soon as possible is the recommended fix but details will not be shared publicly.
In Apache SpamAssassin before 3.4.3, a message can be crafted in a way to use excessive resources. Upgrading to SA 3.4.3 as soon as possible is the recommended fix but details will not be shared publicly.
Additional Info:
N/A
Download:
SRPMS
- spamassassin-3.4.0-6.el7.src.rpm
MD5: eba8493bf58a10a80d93b9f8d3fabc79
SHA-256: a95965af768177124e91b40c2cd59e9a4974482402761805cfb0dce65fcc2987
Size: 1.30 MB
Asianux Server 7 for x86_64
- spamassassin-3.4.0-6.el7.x86_64.rpm
MD5: 6ec02bb7da85c80919ebe6fe13f24f87
SHA-256: b5a118b58cc7505b43569630814ab6170b4f2a79e39b246c68700e3b64c7380e
Size: 1.17 MB