2010 Mails Trigger SpamAssassin
The Apache Project has warned of a bug in versions 3.2.0 to 3.2.5 of SpamAssassin that triggers an excessive number of spam alerts by mails from 2010. Debian Lenny is also infected.
The bug was discovered by Mike Cardwell. On his blog, he reports that older versions of SpamAssassin contain a rule called FH_DATE_PAST_20XX, which falsely identifies mails from 2010 as coming from the future and declares them as spam.
Because the version 3.2.5 is used by the Debian Project Lenny, Debian developers have issued an update 3.2.5-2+lenny1.1~volitile1 which should fix the bug. Unstable users should, according to this blog post, upgrade to version 3.2.5-7.
Most mainstream distributions are also under threat. Details of the problem can be found on the SpamAssassin homepage.
Issue 217/2018
Buy this issue as a PDF
News
-
OpenStack Foundation Changes Name of the OpenStack Summit
New event will be known as the Open Infrastructure Summit
-
System76 Announces a Line of US-Made PCs
Thelio series is available for pre-order and will ship in early December.
-
IBM Acquires Red Hat
IBM is acquiring Red Hat, the most successful open source company.
-
Fedora 29 and Ubuntu 18.10 Released
New releases focus on boot time, new hardware, and modular design.
-
Redis Labs Modules Forked
New Commons Clause license rider causes Debian and Fedora developers to fork Redis Labs modules.
-
Microsoft Offers its Patent Portfolio
The company ends its long war; vows to protect Linux.
-
Red Hat Reports $823 Million in Revenue for Second Quarter 2019
Strong performance for cloud and container products leads to a 14% increase over last year.
-
Debian, Ubuntu, and Other Distros are Leaving Users Vulnerable
A security researcher says Linux vendors wait too long to patch the kernel.
-
NextCloud 14 Arrives
The new version adds two new security features for users.
-
Linus Torvalds Takes a Break, Apologizes
The creator of Linux is admitting his abusive behavior on LKML and plans to change.