Apache SpamAssassin 操作系统命令注入漏洞

来源:lists.apache.org

链接：https://lists.apache.org/thread.html/bc58907171c6585e5875a3ce86066d4956c218911cb74e3156de4433@%3Cannounce.apache.org%3E

来源:MLIST

链接：https://lists.apache.org/thread.html/6f89f82a573ea616dce53ec67e52d963618a9f9ac71da5c1efdbd166@%3Cusers.spamassassin.apache.org%3E

来源:MLIST

链接：http://www.openwall.com/lists/oss-security/2019/12/12/1

来源:MISC

链接：https://seclists.org/oss-sec/2019/q4/154

来源:CONFIRM

链接：https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7647

来源:MLIST

链接：https://lists.debian.org/debian-lts-announce/2019/12/msg00019.html

来源:lists.apache.org

链接：https://lists.apache.org/thread.html/2946b38caec47f7f6a79e8e03d2aa723794186e59a7dc6b5e76dfc18@%3Cannounce.spamassassin.apache.org%3E

来源:MLIST

链接：https://lists.apache.org/thread.html/8534b60bae95ac3a8a4adb840f4ab26135f1c973ce197ff44439cbae@%3Cusers.spamassassin.apache.org%3E

来源:MLIST

链接：https://lists.apache.org/thread.html/d015dc5b4f24fd6777a85d068502a9c5d58d69d877ed5b0eb9a22cd5@%3Cdev.spamassassin.apache.org%3E

来源:UBUNTU

链接：https://usn.ubuntu.com/4237-2/

来源:UBUNTU

链接：https://usn.ubuntu.com/4237-1/

来源:svn.apache.org

链接：https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.3.txt

来源:BUGTRAQ

链接：https://seclists.org/bugtraq/2019/Dec/27

来源:MLIST

链接：https://lists.apache.org/thread.html/c1f59b7e13b7f2c12f847f7d0dec2636df3cdbcaa6d8309007395ff4@%3Cusers.spamassassin.apache.org%3E

来源:MLIST

链接：https://lists.apache.org/thread.html/0b5c73809d0690527341d940029f743807b70550050fd23ee869c5e5@%3Cusers.spamassassin.apache.org%3E

来源:DEBIAN

链接：https://www.debian.org/security/2019/dsa-4584

来源:www.debian.org

链接：https://www.debian.org/lts/security/2020/dla-2062

来源:usn.ubuntu.com

链接：https://usn.ubuntu.com/4237-2/

来源:usn.ubuntu.com

链接：https://usn.ubuntu.com/4237-1/

来源:www.debian.org

链接：https://www.debian.org/security/2019/dsa-4584

来源:svn.apache.org

链接：https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.4.txt

来源:www.suse.com

链接：https://www.suse.com/support/update/announcement/2019/suse-su-20193296-1.html

来源:www.suse.com

链接：https://www.suse.com/support/update/announcement/2019/suse-su-20193297-1.html

来源:www.suse.com

链接：https://www.suse.com/support/update/announcement/2019/suse-su-20193309-1.html

来源:www.suse.com

链接：https://www.suse.com/support/update/announcement/2019/suse-su-20193310-1.html

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/159834/Red-Hat-Security-Advisory-2020-4625-01.html

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/155933/Ubuntu-Security-Notice-USN-4237-1.html

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2019.4667/

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/155679/Debian-Security-Advisory-4584-1.html

来源:packetstormsecurity.com

链接：https://packetstormsecurity.com/files/155957/Ubuntu-Security-Notice-USN-4237-2.html

来源:vigilance.fr

链接：https://vigilance.fr/vulnerability/Apache-SpamAssassin-code-execution-via-CF-Files-31158

来源:nvd.nist.gov

链接：https://nvd.nist.gov/vuln/detail/CVE-2018-11805

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.0166/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.0132/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.0352/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2019.4667.2/

来源:www.auscert.org.au

链接：https://www.auscert.org.au/bulletins/ESB-2020.0109/