Announcements for debian-volatile

[VUA 37-1] Updated SpamAssassin package fixes security flaw


---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 37-1     http://volatile.debian.org
debian-volatile <at> lists.debian.org                               Stephen Gran
November 11, 2007
---------------------------------------------------------------------------

Package              : spamassassin
Version              : 3.2.3-0.volatile1
Importance           : low
CVE IDs              : CVE-2007-2873

The following security flaw was found and fixed in spamassassin:

[CVE-2007-2873]  A local user symlink vulnerability in some non-standard
                 configurations could lead to arbitrary file overwrites.

Additionally, this version brings many new enhancements and bugfixes.

For etch, an updated spamassassin package is available in etch/volatile 
as version 3.2.3-0.volatile1.

We recommend that you update your system.

Upgrade Instructions
--------------------

You can get the updated packages at

http://volatile.debian.org/debian-volatile/pool/volatile/main/s/spamassassin

(Continue reading)


Mon	Tue	Wed	Thu	Fri	Sat	Sun
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30

Mon

Tue

Wed

Thu

Fri

Sat

Sun

1	November 2011
3	October 2011
2	July 2011
3	March 2011
1	January 2011
1	December 2010
2	November 2010
3	October 2010
2	September 2010
2	June 2010
2	May 2010
2	April 2010
3	January 2010
1	December 2009
1	October 2009
1	July 2009
2	June 2009
3	April 2009
1	March 2009
1	February 2009
1	January 2009
1	December 2008
1	October 2008
1	September 2008
1	June 2008
2	May 2008
1	April 2008
2	March 2008
5	February 2008
5	December 2007
1	November 2007
2	August 2007
2	July 2007
2	June 2007
2	April 2007
3	March 2007
2	February 2007
1	December 2006
2	November 2006
1	October 2006
3	August 2006
2	July 2006
1	June 2006
2	May 2006
1	April 2006
4	January 2006
1	December 2005
2	November 2005
2	September 2005