| Release | Version |
|---|---|
| jessie | 3.4.0-6 |
| stretch | 3.4.1-6+deb9u1 |
| buster | 3.4.2-1 |
| sid | 3.4.2-1 |
| Bug | jessie | stretch | buster | sid | Description |
|---|---|---|---|---|---|
| CVE-2018-11781 | vulnerable | vulnerable | fixed | fixed | Apache SpamAssassin 3.4.2 fixes a local user code injection in the ... |
| CVE-2018-11780 | vulnerable | vulnerable | fixed | fixed | A potential Remote Code Execution bug exists with the PDFInfo plugin ... |
| CVE-2017-15705 | vulnerable | vulnerable | fixed | fixed | A denial of service vulnerability was identified that exists in Apache ... |
| Bug | Description |
|---|---|
| CVE-2007-2873 | SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as ... |
| CVE-2007-0451 | Apache SpamAssassin before 3.1.8 allows remote attackers to cause a ... |
| CVE-2006-2447 | SpamAssassin before 3.1.3, when running with vpopmail and the paranoid ... |
| CVE-2005-3351 | SpamAssassin 3.0.4 allows attackers to bypass spam detection via an ... |
| CVE-2005-1266 | Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to ... |
| CVE-2004-0796 | SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to ... |
| CVE-2003-1557 | Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, ... |
| DSA / DLA | Description |
|---|---|
| DSA-1090-1 | spamassassin - programming error |
| DSA-736-2 | spamassassin - mail header parsing error |
| DSA-736-2 | spamassassin - mail header parsing error |
| DSA-736-1 | spamassassin - mail header parsing error |
| DSA-736-1 | spamassassin - mail header parsing error |