Oval Definition:oval:org.opensuse.security:def:68461
Revision Date:2020-12-01Version:1
Title:Security update for spamassassin (Important)
Description:

This update for spamassassin fixes the following issues:

Security issues fixed:

- CVE-2018-11805: Fixed an issue with delimiter handling in rule files related to is_regexp_valid() (bsc#1118987). - CVE-2020-1930: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands (bsc#1162197). - CVE-2020-1931: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands with warnings (bsc#1162200). Non-security issue fixed:

- Altering hash requires restarting loop (bsc#862963).
Family:unixClass:patch
Status:Reference(s):1118987
1162197
1162200
1169063
1171899
1173606
862963
CVE-2018-11805
CVE-2020-11647
CVE-2020-13164
CVE-2020-15466
CVE-2020-1930
CVE-2020-1931
SUSE-SU-2020:0811-1
SUSE-SU-2020:2144-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • perl-Mail-SpamAssassin-3.4.2-12.5 is installed
  • OR spamassassin-3.4.2-12.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • wireshark-3.2.5-3.38 is installed
  • OR wireshark-devel-3.2.5-3.38 is installed
  • OR wireshark-ui-qt-3.2.5-3.38 is installed
    • BACK