SpamAssassin provides a way to reduce unsolicited commercial email (spam)
from incoming email.
A flaw was found in the way SpamAssassin processes HTML email containing
URIs. A carefully crafted mail message could cause SpamAssassin to consume
significant resources. If a number of these messages are sent, this could
lead to a denial of service, potentially delaying or preventing the
delivery of email. (CVE-2007-0451)
Users of SpamAssassin should upgrade to these updated packages which
contain version 3.1.8 which is not vulnerable to these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | ia64 | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.ia64.rpm |
RedHat | 5 | src | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.src.rpm |
RedHat | 5 | s390x | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.s390x.rpm |
RedHat | 5 | x86_64 | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.x86_64.rpm |
RedHat | 5 | i386 | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.i386.rpm |
RedHat | 5 | ppc | spamassassin | < 3.1.8-2.el5 | spamassassin-3.1.8-2.el5.ppc.rpm |