Fedora Legacy Test Update Notification: spamassassin

Marc Deslauriers marcdeslauriers at videotron.ca
Sat Mar 5 14:54:11 UTC 2005 

---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2005-2268
Bugzilla https://bugzilla.fedora.us/show_bug.cgi?id=2268
2005-03-05
---------------------------------------------------------------------

Name        : spamassassin
Versions    : fc1: spamassassin-2.63-0.2.1.legacy
Summary     : Spam filter for email which can be invoked from mail
               delivery agents.
Description :
SpamAssassin provides you with a way to reduce if not completely
eliminate Unsolicited Commercial Email (SPAM) from your incoming email.
It can be invoked by a MDA such as sendmail or postfix, or can be called
from a procmail script, .forward file, etc.  It uses a genetic-algorithm
evolved scoring system to identify messages which look spammy, then
adds headers to the message so they can be filtered by the user's mail
reading software.  This distribution includes the spamd/spamc components
which create a server that considerably speeds processing of mail.

---------------------------------------------------------------------
Update Information:

An updated spamassassin package that fixes a denial of service bug when
parsing malformed messages is now available.

SpamAssassin provides a way to reduce unsolicited commercial email
(SPAM) from incoming email.

A denial of service bug has been found in SpamAssassin versions below
2.64. A malicious attacker could construct a message in such a way that
would cause spamassassin to stop responding, potentially preventing the
delivery or filtering of email. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2004-0796 to this
issue.

Users of SpamAssassin should update to these updated packages which
contain a backported patch and is not vulnerable to this issue.

---------------------------------------------------------------------
Changelogs

fc1:
* Tue Nov 16 2004 Rob Myers <rob.myers at gtri.gatech.edu> 2.63-0.2.1.legacy
- patch for CAN-2004-0796 (FL #2268)

---------------------------------------------------------------------
This update can be downloaded from:
   http://download.fedoralegacy.org/
(sha1sums)

fc1:
0a34a50cec6fb1e4d4359d49e928adc8aba06048 
fedora/1/updates-testing/i386/spamassassin-2.63-0.2.1.legacy.i386.rpm
e4b75ec1d65a4d32cd80e55b5fb720aa73bdc4f5 
fedora/1/updates-testing/SRPMS/spamassassin-2.63-0.2.1.legacy.src.rpm

---------------------------------------------------------------------

Please test and comment in bugzilla.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 256 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20050305/8484a763/attachment.sig>

More information about the fedora-legacy-list mailing list