spamassassin: 3.4.2 -> 3.4.3

Two security issues have been fixed in this release:
  * CVE-2019-12420 for Multipart Denial of Service Vulnerability
  * CVE-2018-11805 for nefarious CF files can be configured to
    run system commands without any output or errors.

https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.3.txt
This commit is contained in:
Andreas Rammhold 2019-12-15 20:48:56 +01:00
parent eb2d272efd
commit 5d3607b2da
No known key found for this signature in database
GPG Key ID: E432E410B5E48C86

View File

@ -2,11 +2,11 @@
perlPackages.buildPerlPackage rec {
pname = "SpamAssassin";
version = "3.4.2";
version = "3.4.3";
src = fetchurl {
url = "mirror://apache/spamassassin/source/Mail-${pname}-${version}.tar.bz2";
sha256 = "1np8h293bzg33i0xn9gj9krwgr7k6xbyf1yhxr2j2xci95d080yg";
sha256 = "1380cmrgjsyidnznr844c5yr9snz36dw7xchdfryi2s61vjzvf55";
};
# https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7434