f513d6e614
This update fixes among many other tiny bugs one security bug that allows a remote attacker to cause a denial of service in bogofilter, by crashing it; a malformatted (non-conformant) RFC-2047 encoded word triggers an attempt to write a terminating NUL byte past the end of a buffer or (more commonly) into the zero-page, which causes a segfault. Depending on the exact MTA/MDA configuration on the receiving machine, this can cause a denial of service of the mail system. PR: ports/73144 Submitted by: maintainer
2 lines
109 B
Text
2 lines
109 B
Text
MD5 (bogofilter-0.92.8.tar.bz2) = dac06b6afcab0e36d17b1604216dc9bf
|
|
SIZE (bogofilter-0.92.8.tar.bz2) = 637420
|