[Secure-testing-commits] r5451 - data/CVE

[Micah Anderson]

Author: micah
Date: 2007-02-13 20:57:58 +0100 (Tue, 13 Feb 2007)
New Revision: 5451

Modified:
   data/CVE/list
Log:
Spamassassin DoS affecting all versions


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-02-13 18:07:27 UTC (rev 5450)
+++ data/CVE/list	2007-02-13 19:57:58 UTC (rev 5451)
@@ -1,3 +1,7 @@
+CVE-2007-XXXX (DoS in spamassassin URI parsing causes SA to enter loop eating all RAM)
+	- spamassassin 3.1.8
+	NOTE: http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5318
+	NOTE: CVE assignment being pursued by ASF procedure
 CVE-2007-0895 (Race condition in recursive directory deletion with the (1) -r or (2) ...)
 	TODO: check
 CVE-2007-0894 (MediaWiki before 1.9.2 allows remote attackers to obtain sensitive ...)