Lucene search
RedHatRHSA-2007:0492HistoryJun 13, 2007 - 12:00 a.m.
(RHSA-2007:0492) Moderate: spamassassin security update
2007-06-1300:00:00
access.redhat.com
8
0.0004 Low
EPSS
Percentile
5.1%
SpamAssassin provides a way to reduce unsolicited commercial email (spam)
from incoming email.
Martin Krafft discovered a symlink issue in SpamAssassin that affects
certain non-default configurations. A local user could use this flaw to
create or overwrite files writable by the spamd process (CVE-2007-2873).
Users of SpamAssassin should upgrade to these updated packages which
contain a backported patch to correct this issue.
Note: This issue did not affect the version of SpamAssassin shipped with
Red Hat Enterprise Linux 3.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | i386 | spamassassin | < 3.1.9-1.el4 | spamassassin-3.1.9-1.el4.i386.rpm |
| RedHat | 4 | s390x | spamassassin | < 3.1.9-1.el4 | spamassassin-3.1.9-1.el4.s390x.rpm |
| RedHat | 5 | ia64 | spamassassin | < 3.1.9-1.el5 | spamassassin-3.1.9-1.el5.ia64.rpm |
| RedHat | 5 | i386 | spamassassin | < 3.1.9-1.el5 | spamassassin-3.1.9-1.el5.i386.rpm |
| RedHat | 5 | ppc | spamassassin | < 3.1.9-1.el5 | spamassassin-3.1.9-1.el5.ppc.rpm |
| RedHat | 5 | x86_64 | spamassassin | < 3.1.9-1.el5 | spamassassin-3.1.9-1.el5.x86_64.rpm |
| RedHat | 4 | x86_64 | spamassassin | < 3.1.9-1.el4 | spamassassin-3.1.9-1.el4.x86_64.rpm |
| RedHat | 5 | s390x | spamassassin | < 3.1.9-1.el5 | spamassassin-3.1.9-1.el5.s390x.rpm |
| RedHat | 4 | src | spamassassin | < 3.1.9-1.el4 | spamassassin-3.1.9-1.el4.src.rpm |
| RedHat | 4 | ia64 | spamassassin | < 3.1.9-1.el4 | spamassassin-3.1.9-1.el4.ia64.rpm |
Related
nessus
nessus
Fedora Core 6 : spamassassin-3.1.9-1.fc6 (2007-582)
2007-06-14 00:00:00
Scientific Linux Security Update : spamassassin on SL5.x, SL4.x i386/x86_64 (fwd)
2012-08-01 00:00:00
Fedora 7 : spamassassin-3.2.1-1.fc7 (2007-0390)
2007-11-06 00:00:00
openvas
openvas
FreeBSD Ports: p5-Mail-SpamAssassin
2008-09-04 00:00:00
Fedora Update for spamassassin FEDORA-2007-582
2009-02-27 00:00:00
Fedora Update for spamassassin FEDORA-2007-0390
2009-02-27 00:00:00
cvelist
cvelist
CVE-2007-2873
2007-06-11 23:00:00
cve
cve
CVE-2007-2873
2007-06-11 23:30:00
ubuntucve
ubuntucve
CVE-2007-2873
2007-06-11 00:00:00
oraclelinux
oraclelinux
Moderate: spamassassin security update
2007-06-13 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:16:00
prion
prion
Design/Logic Flaw
2007-06-11 23:30:00
securityvulns
securityvulns
[Full-disclosure] rPSA-2007-0119-1 spamassassin
2007-06-14 00:00:00
Spamassasin local DoS
2007-06-14 00:00:00
centos
centos
spamassassin security update
2007-06-13 23:34:02
fedora
fedora
[SECURITY] Fedora Core 6 Update: spamassassin-3.1.9-1.fc6
2007-06-12 21:18:59
[SECURITY] Fedora 7 Update: spamassassin-3.2.1-1.fc7
2007-06-12 19:58:31
[SECURITY] Fedora Core 5 Update: spamassassin-3.1.9-1.fc5.1
2007-06-12 21:36:03
debiancve
debiancve
CVE-2007-2873
2007-06-11 23:30:00
nvd
nvd
CVE-2007-2873
2007-06-11 23:30:00
freebsd
freebsd
p5-Mail-SpamAssassin -- local user symlink-attack DoS vulnerability
2007-06-11 00:00:00