pkg:Debian/spamassassin

All known vulnerabilities

• CRITICAL9.8CVE-2020-1946spamassassin - security update
  from 0, < 3.4.2-1+deb10u3
• CRITICAL9.8CVE-2020-1946spamassassin - security update
  from 0, < 3.4.5~pre1-1
• CRITICAL9.8CVE-2020-1946spamassassin - security update
  from 0, < 3.4.2-1~deb9u4
• CRITICAL9.8A potential Remote Code Execution bug exists with the PDFInfo plugin in Apache SpamAssassin before 3.4.2.
  from 0, < 3.4.2-1
• HIGH8.1A command execution issue was found in Apache SpamAssassin prior to 3.4.3.
  from 0, < 3.4.4~rc1-1
• HIGH8.1spamassassin - security update
  from 0, < 3.4.4~rc1-1
• HIGH8.1spamassassin - security update
  from 0, < 3.4.2-1~deb9u3
• HIGH8.1spamassassin - security update
  from 0, < 3.4.2-0+deb8u3
• HIGH7.8Apache SpamAssassin 3.4.2 fixes a local user code injection in the meta rule syntax.
  from 0, < 3.4.2-1
• HIGH7.8perl - security update
  from 0, < 3.4.2-0+deb8u1
• HIGH7.5In Apache SpamAssassin before 3.4.3, a message can be crafted in a way to use excessive resources.
  from 0, < 3.4.3~rc6-1
• MEDIUM6.7spamassassin - security update
  from 0, < 3.4.2-0+deb8u2
• MEDIUM6.7spamassassin - security update
  from 0, < 3.4.2-1~deb9u2
• MEDIUM6.7spamassassin - security update
  from 0, < 3.4.3~rc6-1
• MEDIUM5.3A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2.
  from 0, < 3.4.2-1
• —SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allow…
  from 0, < 3.2.1-1
• —Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "mass…
  from 0, < 3.1.7-2
• —spamassassin - programming error
  from 0, < 3.1.3-1
• —spamassassin - programming error
  from 0, < 3.0.3-2sarge1
• —SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which trigge…
  from 0, < 3.1.0a-1
• —spamassassin - mail header parsing error
  from 0, < 3.0.3-2
• —spamassassin - mail header parsing error
  from 0, < 3.0.3-2
• —spamassassin - mail header parsing error
  from 0, < 3.0.4-1
• —SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to cause a denial of service via certain malformed messages.
  from 0, < 2.64
• —Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arb…
  from 0, < 3.1.7-2