ELSA-2018-2916

ULN >
Oracle Linux Errata repository >
ELSA-2018-2916

ELSA-2018-2916 - spamassassin security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2018-10-11

Description

[3.4.0-4]
- Add missing Requires for perl(XSLoader) and perl(ExtUtils::MakeMaker),
- which are no longer auto-generated due to a (expected) change in rpm-build
- Related: rhbz#1632998

[3.4.0-3]
- Fix CVE-2018-11781 - Local user code injection in the meta rule syntax
- Fix CVE-2017-15705 - Certain unclosed tags in crafted emails allow for
- scan timeouts and resulting denial of service
- Resolves: rhbz#1632998

Related CVEs

CVE-2017-15705

CVE-2018-11781

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	spamassassin-3.4.0-4.el7_5.src.rpm	6262d9a3949f553283fef5025947a603	ELSA-2020-3973
	spamassassin-3.4.0-4.el7_5.aarch64.rpm	db5937d96b87a7fccec904f59d999921	ELSA-2020-3973

Oracle Linux 7 (x86_64)	spamassassin-3.4.0-4.el7_5.src.rpm	6262d9a3949f553283fef5025947a603	ELSA-2020-3973
	spamassassin-3.4.0-4.el7_5.x86_64.rpm	87d9bd07dccf04e2cd0136e9cf9b2795	ELSA-2020-3973

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691