Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 455
Alerts This Week
Warning Icon 1 455

Gentoo 200703-02 Normal: SpamAssassin DoS Attack Advisory

gentoo
Calendar Grey March 2, 2007
Dist Gentoo Esm H88
Gentoo's SpamAssassin has been identified as susceptible to Denial of Service threats, necessitating prompt updates to protect systems.
SpamAssassin is vulnerable to a Denial of Service attack.

Summary

Gentoo Linux Security Advisory GLSA 200703-02 https://security.gentoo.org/ Severity: Normal Title: SpamAssassin: Long URI Denial of Service Date: March 02, 2007 Bugs: #166969 ID: 200703-02

Synopsis ======= SpamAssassin is vulnerable to a Denial of Service attack.
Background ========= SpamAssassin is an extensible email filter used to identify junk email.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 mail-filter/spamassassin < 3.1.8 >= 3.1.8
========== SpamAssassin does not correctly handle very long URIs when scanning emails.
Impact ===== An attacker could cause SpamAssassin to consume large amounts of CPU and memory resources by sending one or more emails co...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround