Bug 109186 - security update: spamassassin 3.17 to 3.18
Summary: security update: spamassassin 3.17 to 3.18
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Cheng-Lung Sung
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-02-15 02:20 UTC by Michael Scheidell
Modified: 2007-02-16 09:00 UTC (History)
1 user (show)

See Also:

Attachments
file.diff (1.26 KB, patch)
2007-02-15 02:20 UTC, Michael Scheidell 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Scheidell 2007-02-15 02:20:05 UTC 
3.1.8 is a major bug-fix release, including a potential DoS.  The major
highlights are:

- bug 5318: fix for CVE-2007-0451: possible DoS due to incredibly
  long URIs found in the message content.
- bug 5240: disable perl module usage in update channels unless
  --allowplugins is specified
- bug 5288: files with names starting/ending in whitespace weren't 
usable
- bug 5056: remove Text::Wrap related code due to upstream issues
- bug 5145: update spamassassin and sa-learn to better deal with STDIN
- bug 5140 and 5179: improvements and bug fixes related to DomainKeys
  and DKIM support
- several updates for Received header parsing
- several documentation updates and random taint-variable related issues

A more detailed change log can be read here:

  http://svn.apache.org/repos/asf/spamassassin/branches/3.1/Changes

Fix: patches to upgade Sa 3.1.7 to 3.1.8
Note: many patches in files/* removed due to being incorporated in
SA source. these files should be removed from files/*
	
patch-spamassassin.raw
patch-sa-learn.raw
patch-lib-Mail-SpamAssassin-SpamdForkScaling.pm

here are patches:
How-To-Repeat: NA
Comment 1 Cheng-Lung Sung freebsd_committer freebsd_triage 2007-02-15 05:47:28 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->clsung

I'll take it.
Comment 2 dfilter service freebsd_committer freebsd_triage 2007-02-16 08:53:13 UTC 
clsung      2007-02-16 08:53:08 UTC

  FreeBSD ports repository

  Modified files:
    mail/p5-Mail-SpamAssassin Makefile distinfo 
  Removed files:
    mail/p5-Mail-SpamAssassin/files 
                                    patch-lib-Mail-SpamAssassin-SpamdForkScaling.pm 
                                    patch-sa-learn.raw 
                                    patch-spamassassin.raw 
  Log:
  - Update to 3.1.8
  - submitter now become maintainer
  - Changes
    http://svn.apache.org/repos/asf/spamassassin/branches/3.1/Changes
  
  PR:             ports/109186
  Submitted by:   maintainer (Michael Scheidell)
  
  Revision  Changes    Path
  1.104     +2 -3      ports/mail/p5-Mail-SpamAssassin/Makefile
  1.37      +3 -3      ports/mail/p5-Mail-SpamAssassin/distinfo
  1.2       +0 -53     ports/mail/p5-Mail-SpamAssassin/files/patch-lib-Mail-SpamAssassin-SpamdForkScaling.pm (dead)
  1.7       +0 -27     ports/mail/p5-Mail-SpamAssassin/files/patch-sa-learn.raw (dead)
  1.4       +0 -19     ports/mail/p5-Mail-SpamAssassin/files/patch-spamassassin.raw (dead)
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 3 Cheng-Lung Sung freebsd_committer freebsd_triage 2007-02-16 08:53:17 UTC 
State Changed
From-To: open->closed

Committed. Thank you. Also recommand using ports-mgmt/porttools  
to facilitate sending PR.