| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for spamassassin (Important) |
| Description: |
This update for spamassassin fixes the following issues:
Security issues fixed:
- CVE-2018-11805: Fixed an issue with delimiter handling in rule files related to is_regexp_valid() (bsc#1118987). - CVE-2020-1930: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands (bsc#1162197). - CVE-2020-1931: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands with warnings (bsc#1162200). Non-security issue fixed:
- Altering hash requires restarting loop (bsc#862963).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1055857
1059893
1118987
1120943
1160770
1162197
1162200
1170446
1171475
1171847
1172105
1172116
1172121
1173592
1173594
1178971
862963
CVE-2016-6328
CVE-2017-7544
CVE-2018-11805
CVE-2018-20030
CVE-2019-9278
CVE-2020-0093
CVE-2020-12767
CVE-2020-13112
CVE-2020-13113
CVE-2020-13114
CVE-2020-1930
CVE-2020-1931
CVE-2020-8695
CVE-2020-8696
CVE-2020-8698
SUSE-SU-2020:0811-1
SUSE-SU-2020:1553-1
|
| Platform(s): | openSUSE Leap 15.2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.2 is installed AND ucode-intel-20201118-lp152.2.8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND Package Information
perl-Mail-SpamAssassin-3.4.2-12.5 is installed
OR spamassassin-3.4.2-12.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
AND Package Information
libexif-0.6.22-5.6 is installed
OR libexif-devel-0.6.22-5.6 is installed
OR libexif12-0.6.22-5.6 is installed
|