5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.035 Low
EPSS
Percentile
91.5%
SpamAssassin is an extensible email filter which is used to identify spam.
SpamAssassin contains an unspecified Denial of Service vulnerability.
By sending a specially crafted message an attacker could cause a Denial of Service attack against the SpamAssassin service.
There is no known workaround at this time. All users are encouraged to upgrade to the latest available version of SpamAssassin.
All SpamAssassin users should upgrade to the latest version:
# emerge sync
# emerge -pv ">=mail-filter/spamassassin-2.64"
# emerge ">=mail-filter/spamassassin-2.64"
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | mail-filter/spamassassin | <= 2.63-r1 | UNKNOWN |