Lucene search
RedHatRHSA-2018:2916HistoryOct 11, 2018 - 8:45 p.m.
(RHSA-2018:2916) Important: spamassassin security update
2018-10-1120:45:18
access.redhat.com
65
0.009 Low
EPSS
Percentile
82.6%
The SpamAssassin tool provides a way to reduce unsolicited commercial email (spam) from incoming email.
Security Fix(es):
-
spamassassin: Certain unclosed tags in crafted emails allow for scan timeouts and result in denial of service (CVE-2017-15705)
-
spamassassin: Local user code injection in the meta rule syntax (CVE-2018-11781)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | ppc64le | spamassassin-debuginfo | < 3.4.0-4.el7_5 | spamassassin-debuginfo-3.4.0-4.el7_5.ppc64le.rpm |
| RedHat | 7 | ppc64 | spamassassin | < 3.4.0-4.el7_5 | spamassassin-3.4.0-4.el7_5.ppc64.rpm |
| RedHat | 7 | x86_64 | spamassassin | < 3.4.0-4.el7_5 | spamassassin-3.4.0-4.el7_5.x86_64.rpm |
| RedHat | 7 | s390x | spamassassin | < 3.4.0-4.el7_5 | spamassassin-3.4.0-4.el7_5.s390x.rpm |
| RedHat | 7 | aarch64 | spamassassin | < 3.4.0-4.el7_5 | spamassassin-3.4.0-4.el7_5.aarch64.rpm |
| RedHat | 7 | s390x | spamassassin-debuginfo | < 3.4.0-4.el7_5 | spamassassin-debuginfo-3.4.0-4.el7_5.s390x.rpm |
| RedHat | 7 | ppc64 | spamassassin-debuginfo | < 3.4.0-4.el7_5 | spamassassin-debuginfo-3.4.0-4.el7_5.ppc64.rpm |
| RedHat | 7 | x86_64 | spamassassin-debuginfo | < 3.4.0-4.el7_5 | spamassassin-debuginfo-3.4.0-4.el7_5.x86_64.rpm |
| RedHat | 7 | aarch64 | spamassassin-debuginfo | < 3.4.0-4.el7_5 | spamassassin-debuginfo-3.4.0-4.el7_5.aarch64.rpm |
| RedHat | 7 | ppc64le | spamassassin | < 3.4.0-4.el7_5 | spamassassin-3.4.0-4.el7_5.ppc64le.rpm |
Related
oraclelinux
oraclelinux
spamassassin security update
2018-10-11 00:00:00
nessus
nessus
Oracle Linux 7 : spamassassin (ELSA-2018-2916)
2018-10-12 00:00:00
CentOS 7 : spamassassin (CESA-2018:2916)
2018-10-16 00:00:00
RHEL 7 : spamassassin (RHSA-2018:2916)
2018-10-12 00:00:00
amazon
amazon
Important: spamassassin
2018-11-07 22:09:00
Important: spamassassin
2018-10-17 21:58:00
centos
centos
spamassassin security update
2018-10-15 21:01:19
openvas
openvas
CentOS Update for spamassassin CESA-2018:2916 centos7
2018-10-16 00:00:00
Ubuntu: Security Advisory (USN-3811-1)
2018-11-07 00:00:00
openSUSE: Security Advisory for spamassassin (openSUSE-SU-2019:1831-1)
2019-08-07 00:00:00
ubuntu
ubuntu
SpamAssassin vulnerabilities
2018-11-06 00:00:00
SpamAssassin vulnerability
2018-11-13 00:00:00
SpamAssassin vulnerabilities
2018-12-05 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: spamassassin-3.4.2-2.fc29
2018-09-29 22:03:09
[SECURITY] Fedora 27 Update: spamassassin-3.4.2-2.fc27
2018-09-29 23:57:23
[SECURITY] Fedora 28 Update: spamassassin-3.4.2-2.fc28
2018-09-23 20:19:52
debian
debian
[SECURITY] [DLA 1578-1] spamassassin security update
2018-11-13 19:06:40
gentoo
gentoo
SpamAssassin: Multiple vulnerabilities
2018-12-15 00:00:00
mageia
mageia
Updated spamassassin packages fix security vulnerabilities
2018-10-30 21:01:43
freebsd
freebsd
spamassassin -- multiple vulnerabilities
2018-09-16 00:00:00
suse
suse
Security update for spamassassin (moderate)
2019-08-06 00:00:00
osv
osv
spamassassin - security update
2018-11-13 00:00:00
CVE-2018-11781
2018-09-17 14:29:00
CVE-2017-15705
2018-09-17 14:29:00
prion
prion
Code injection
2018-09-17 14:29:00
Hardcoded credentials
2018-09-17 14:29:00
alpinelinux
alpinelinux
CVE-2018-11781
2018-09-17 14:29:00
CVE-2017-15705
2018-09-17 14:29:00
cvelist
cvelist
CVE-2018-11781
2018-09-16 00:00:00
CVE-2017-15705
2018-09-16 00:00:00
veracode
veracode
Arbitrary Code Injection
2020-12-06 04:22:46
Denial Of Service (DoS)
2020-12-06 03:34:03
redhatcve
redhatcve
CVE-2018-11781
2018-09-17 03:51:04
CVE-2017-15705
2018-09-17 03:51:19
debiancve
debiancve
CVE-2018-11781
2018-09-17 14:29:00
CVE-2017-15705
2018-09-17 14:29:00
ubuntucve
ubuntucve
CVE-2018-11781
2018-09-17 00:00:00
CVE-2017-15705
2018-09-17 00:00:00
cve
cve
CVE-2018-11781
2018-09-17 14:29:00
CVE-2017-15705
2018-09-17 14:29:00