FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
e3404a6e-4364-11ea-b643-206a8a720317	spamassassin -- Apache SpamAssassin Nefarious rule configuration (.cf) files can be configured to run system commands with warnings the Apache Spamassassin project reports: nefarious rule configuration (.cf) files can be configured to run system commands similar to CVE-2018-11805. This issue is less stealthy and attempts to exploit the issue will throw warnings. Discovery 2020-01-30 Entry 2020-01-30 spamassassin < 3.4.4 https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.4.txt https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-1931 CVE-2020-1931

VuXML ID

Description

e3404a6e-4364-11ea-b643-206a8a720317

spamassassin -- Apache SpamAssassin Nefarious rule configuration (.cf) files can be configured to run system commands with warnings

the Apache Spamassassin project reports:

nefarious rule configuration (.cf) files can be configured to run system commands similar to CVE-2018-11805. This issue is less stealthy and attempts to exploit the issue will throw warnings.

Discovery 2020-01-30
Entry 2020-01-30
spamassassin

< 3.4.4

https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.4.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-1931
CVE-2020-1931