Package: spamassassin | Debian Sources

Package: spamassassin / 3.4.2-1+deb10u3

Metadata

Package	Version	Patches format
spamassassin	3.4.2-1+deb10u3	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
10_change_config_paths \| (download)	INSTALL \| 2 1 + 1 - 0 ! README \| 10 5 + 5 - 0 ! UPGRADE \| 4 2 + 2 - 0 ! USAGE \| 6 3 + 3 - 0 ! ldap/README \| 2 1 + 1 - 0 ! lib/Mail/SpamAssassin/Conf.pm \| 4 2 + 2 - 0 ! lib/Mail/SpamAssassin/Plugin/Test.pm \| 2 1 + 1 - 0 ! lib/spamassassin-run.pod \| 4 2 + 2 - 0 ! rules/user_prefs.template \| 2 1 + 1 - 0 ! sa-compile.raw \| 4 2 + 2 - 0 ! sa-learn.raw \| 4 2 + 2 - 0 ! spamc/spamc.pod \| 4 2 + 2 - 0 ! spamd/README \| 2 1 + 1 - 0 ! spamd/README.vpopmail \| 2 1 + 1 - 0 ! spamd/spamd.raw \| 2 1 + 1 - 0 ! sql/README \| 2 1 + 1 - 0 ! sql/README.awl \| 2 1 + 1 - 0 ! t/data/testplugin.pm \| 2 1 + 1 - 0 ! 18 files changed, 30 insertions(+), 30 deletions(-)	---
20_edit_spamc_pod \| (download)	spamc/spamc.pod \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
55_disable_nagios_epm \| (download)	sa-check_spamd.raw \| 5 5 + 0 - 0 ! 1 file changed, 5 insertions(+)	---
90_pod_cleanup \| (download)	lib/Mail/SpamAssassin/Conf.pm \| 2 1 + 1 - 0 ! lib/Mail/SpamAssassin/Plugin/MIMEEval.pm \| 34 32 + 2 - 0 ! 2 files changed, 33 insertions(+), 3 deletions(-)	---
98_sa compile quiet \| (download)	lib/Mail/SpamAssassin/Plugin/BodyRuleBaseExtractor.pm \| 3 2 + 1 - 0 ! 1 file changed, 2 insertions(+), 1 deletion(-)	---
bug_766718 net dns vers \| (download)	lib/Mail/SpamAssassin/Dns.pm \| 5 3 + 2 - 0 ! 1 file changed, 3 insertions(+), 2 deletions(-)	improve net::dns package version checks. This isn't strictly necessary right now, but does make version checks more robust and should be forwarded upstream. In multiple places, spamassassin contains tests against $Net::DNS::VERSION that assume the value is numeric. It is not guaranteed to be numeric, and in cases where it isn't the tests trigger warnings. Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=766718
CVE 2018 11805 \| (download)	lib/Mail/SpamAssassin/Conf.pm \| 189 94 + 95 - 0 ! lib/Mail/SpamAssassin/Conf/Parser.pm \| 285 127 + 158 - 0 ! lib/Mail/SpamAssassin/Constants.pm \| 7 5 + 2 - 0 ! lib/Mail/SpamAssassin/Dns.pm \| 30 6 + 24 - 0 ! lib/Mail/SpamAssassin/Logger.pm \| 2 2 + 0 - 0 ! lib/Mail/SpamAssassin/Message.pm \| 26 23 + 3 - 0 ! lib/Mail/SpamAssassin/PerMsgStatus.pm \| 1 0 + 1 - 0 ! lib/Mail/SpamAssassin/Plugin/Bayes.pm \| 10 8 + 2 - 0 ! lib/Mail/SpamAssassin/Plugin/BodyRuleBaseExtractor.pm \| 23 15 + 8 - 0 ! lib/Mail/SpamAssassin/Plugin/Check.pm \| 315 109 + 206 - 0 ! lib/Mail/SpamAssassin/Plugin/HTMLEval.pm \| 33 22 + 11 - 0 ! lib/Mail/SpamAssassin/Plugin/MIMEHeader.pm \| 51 32 + 19 - 0 ! lib/Mail/SpamAssassin/Plugin/PDFInfo.pm \| 33 15 + 18 - 0 ! lib/Mail/SpamAssassin/Plugin/ReplaceTags.pm \| 174 94 + 80 - 0 ! lib/Mail/SpamAssassin/Plugin/Rule2XSBody.pm \| 10 6 + 4 - 0 ! lib/Mail/SpamAssassin/Plugin/URIDetail.pm \| 63 20 + 43 - 0 ! lib/Mail/SpamAssassin/PluginHandler.pm \| 14 14 + 0 - 0 ! lib/Mail/SpamAssassin/Util.pm \| 192 181 + 11 - 0 ! t/dnsbl.t \| 50 11 + 39 - 0 ! t/if_can.t \| 14 13 + 1 - 0 ! t/mimeheader.t \| 19 17 + 2 - 0 ! t/regexp_valid.t \| 85 44 + 41 - 0 ! t/stop_always_matching_regexps.t \| 10 4 + 6 - 0 ! 23 files changed, 862 insertions(+), 774 deletions(-)	patch for cve-2018-11805 Malicious rules could execute arbitrary commands under multiple circumstances.
CVE 2019 12420 \| (download)	lib/Mail/SpamAssassin/Message.pm \| 8 8 + 0 - 0 ! 1 file changed, 8 insertions(+)	limit checked mime parts
CVE 2020 1930 \| (download)	lib/Mail/SpamAssassin/Plugin/OneLineBodyRuleType.pm \| 16 9 + 7 - 0 ! 1 file changed, 9 insertions(+), 7 deletions(-)	---
CVE 2020 1931 \| (download)	lib/Mail/SpamAssassin/Conf.pm \| 14 14 + 0 - 0 ! lib/Mail/SpamAssassin/Constants.pm \| 4 3 + 1 - 0 ! 2 files changed, 17 insertions(+), 1 deletion(-)	---
spamd_tests_use_unprivileged_port.diff \| (download)	t/spamd_ssl.t \| 4 2 + 2 - 0 ! t/spamd_ssl_accept_fail.t \| 6 3 + 3 - 0 ! 2 files changed, 5 insertions(+), 5 deletions(-)	allow tls tests to run as non-root user The spamd TLS tests involve starting spamd and binding to a TCP port. Spamd's default TCP port is 783, and this is not overridden in the test, so the test must run as root in order for the bind() call to work. Since the specific port isn't important for the test, we'll override it here to use a non-privileged port.
spamd_tests_use_rsa2048_self signed_cert \| (download)	t/data/etc/testhost.cert \| 44 23 + 21 - 0 ! t/data/etc/testhost.key \| 43 28 + 15 - 0 ! 2 files changed, 51 insertions(+), 36 deletions(-)	update the self-signed x509 cert used for tests The spamassassin sources embed a self-signed x509 certificate used by the test suite to validate connectivity with spamc. Versions of openssl on Debian won't load 1024 bits by default, so we replace the original certificate with a 2048 bit one, maintaining the rest of the DN parameters unchanged.
CVE 2020 1946.patch \| (download)	lib/Mail/SpamAssassin/Conf/Parser.pm \| 7 4 + 3 - 0 ! 1 file changed, 4 insertions(+), 3 deletions(-)	fix header rule parsing

1