Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Red Hat 4: RHSA-2006:0543-01 Moderate: SpamAssassin Code Execution

red hat
Calendar Grey June 6, 2006
Dist Redhat Esm H88
SUSE Linux – Essential clamav patch SUSE-SU-2023:4055-1 rectifying an unspecified vulnerability.
Updated spamassassin packages that fix an arbitrary code execution flaw are now available

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

178580 - /etc/sysconfig/spamassasin loses file context and timestamp 191033 - spamassassin looks up broken NS domain (visi.com) 193865 - CVE-2006-2447 spamassassin arbitrary command execution

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS: 1cf6fab6ed57f94851a8c87ada04f523 spamassassin-3.0.6-1.el4.src.rpm

i386: 0978c0b3e20da3fac966c71d13667bea spamassassin-3.0.6-1.el4.i386.rpm 25bd4187c6a66e2ca677105811029237 spamassassin-debuginfo-3.0.6-1.el4.i386.rpm

ia64: 8e16f3dea0718f28a779ab7265a5bee1 spamassassin-3.0.6-1.el4.ia64.rpm 3e1d2e066d9703cd6beaa5a9bad55c4a spamassassin-debuginfo-3.0.6-1.el4.ia64.rpm

ppc: 1777390bb8c1371d85b5f18ebbf3f50a spamassassin-3.0.6-1.el4.ppc.rpm d32f0f8e36f8bb5794a77ac0e7fd4d9f spamassassin-debuginfo-3.0.6-1.el4.ppc.rpm

s390: 19525de01fac4f0d7bb66ea5f5abd955 spamassassin-3.0.6-1.el4.s390.rpm d582574e19e8302d4b2aba17e8efd558 spamassassin-debuginfo-3.0.6-1.el4.s390.rpm

s390x: 6c35a656281f5d4d5fe856987dfe686b spamassassin-3.0.6-1.el4.s390x.rpm 31a8592215353516a365f8b80ed487f4 spamassassin-debuginfo-3.0.6-1.el4.s390x.rpm

x86_64: 0e723a4ff9037961094be458f0da16e3 spamassassin-3.0.6-1.el4.x86_64.rpm 4c4640624ad78ea722d1407bf0a7ba82 spamassassin-debuginfo-3.0.6-1.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS: 1cf6fab6ed57f94851a8c87ada04f523 spamassassin-3.0.6-1.el4.src.rpm

i386: 0978c0b3e20da3fac966c71d13667bea spamassassin-3.0.6-1.el4.i386.rpm 25bd4187c6a66e2ca677105811029237 spamassassin-debuginfo-3.0.6-1.el4.i386.rpm

x86_64: 0e723a4ff9037961094be458f0da16e3 spamassassin-3.0.6-1.el4.x86_64.rpm 4c4640624ad78ea722d1407bf0a7ba82 spamassassin-debuginfo-3.0.6-1.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS: 1cf6fab6ed57f94851a8c87ada04f523 spamassassin-3.0.6-1.el4.src.rpm

i386: 0978c0b3e20da3fac966c71d13667bea spamassassin-3.0.6-1.el4.i386.rpm 25bd4187c6a66e2ca677105811029237 spamassassin-debuginfo-3.0.6-1.el4.i386.rpm

ia64: 8e16f3dea0718f28a779ab7265a5bee1 spamassassin-3.0.6-1.el4.ia64.rpm 3e1d2e066d9703cd6beaa5a9bad55c4a spamassassin-debuginfo-3.0.6-1.el4.ia64.rpm

x86_64: 0e723a4ff9037961094be458f0da16e3 spamassassin-3.0.6-1.el4.x86_64.rpm 4c4640624ad78ea722d1407bf0a7ba82 spamassassin-debuginfo-3.0.6-1.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS: 1cf6fab6ed57f94851a8c87ada04f523 spamassassin-3.0.6-1.el4.src.rpm

i386: 0978c0b3e20da3fac966c71d13667bea spamassassin-3.0.6-1.el4.i386.rpm 25bd4187c6a66e2ca677105811029237 spamassassin-debuginfo-3.0.6-1.el4.i386.rpm

ia64: 8e16f3dea0718f28a779ab7265a5bee1 spamassassin-3.0.6-1.el4.ia64.rpm 3e1d2e066d9703cd6beaa5a9bad55c4a spamassassin-debuginfo-3.0.6-1.el4.ia64.rpm

x86_64: 0e723a4ff9037961094be458f0da16e3 spamassassin-3.0.6-1.el4.x86_64.rpm 4c4640624ad78ea722d1407bf0a7ba82 spamassassin-debuginfo-3.0.6-1.el4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2006-2447 https://access.redhat.com/security/updates/classification#moderate

Package List


Advisory ID: RHSA-2006:0543-01
Issue date: 2006-06-06
Updated on: 2006-06-06
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here