Re: SpamAssassin DOS-Fix anytime soon ?

To: debian-security@lists.debian.org
Subject: Re: SpamAssassin DOS-Fix anytime soon ?
From: Marek Olejniczak <marek@olmar.poznan.pl>
Date: Sat, 25 Jun 2005 23:48:27 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.62.0506252342030.22653@orion>
In-reply-to: <[🔎] 200506252049.55889.jluehr@gmx.net>
References: <[🔎] 42BAA028.6060105@kapsobor.de> <[🔎] 20050624104743.GB22878@nekral.homelinux.net> <[🔎] Pine.LNX.4.62.0506241553140.12883@orion> <[🔎] 200506252049.55889.jluehr@gmx.net>

Am Freitag, 24. Juni 2005 15:58 schrieb Marek Olejniczak:

On Fri, 24 Jun 2005, Nicolas [iso-8859-1] François wrote:

On Thu, Jun 23, 2005 at 03:52:14PM +0200, Marek Olejniczak wrote:

There is also a bug in su package which is since 6 days not fixed.
Hallo, security team, wake up! Debian Sarge is buggy! Sarge is
dangerous.


Come down, this is
- local
- I already privileged user is needed.


Are you sure that this is only local bug?

	http://secunia.com/advisories/15704/

However, does anybody know, how this issue is handled in FreeBSD?


In FreeBSD is used spamassassin-3.0.4, which is not vulnerable:


http://www.freebsd.org/cgi/ports.cgi?query=p5-Mail-SpamAssassin-3.0.4&stype=all&release=5-STABLE%2Fi386


---
Marek

Reply to:

References:
- SpamAssassin DOS-Fix anytime soon ?
  - From: iso@kapsobor.de
- Re: SpamAssassin DOS-Fix anytime soon ?
  - From: Nicolas François <nicolas.francois@centraliens.net>
- Re: SpamAssassin DOS-Fix anytime soon ?
  - From: Marek Olejniczak <marek@olmar.poznan.pl>
- Re: SpamAssassin DOS-Fix anytime soon ?
  - From: Jan Lühr <jluehr@gmx.net>

Prev by Date: Re: SpamAssassin DOS-Fix anytime soon ?
Next by Date: proposal: track CAN ids in changelogs
Previous by thread: Re: SpamAssassin DOS-Fix anytime soon ?
Next by thread: Missing debsums and mismatches
Index(es):
- Date
- Thread