openSUSE-SU-2013:0166-1 -- Suse bogofilterID: oval:org.secpod.oval:def:400472 | Date: (C)2013-02-06 (M)2021-06-02 |
Class: PATCH | Family: unix |
- Update to version 1.2.3. * Update configure.ac to avoid autoconf 2.68 warnings, by quoting the first AC_RUN_IFELSE argument, an AC_LANG_PROGRAM, with [ ], and providing an explicit "true" assumption for Berkeley DB capabilities to avoid cross-compilation warnings. * Security bugfix; , Fix a heap corruption in base64 decoder on invalid input. * Mark "Berkeley DB 5.1.19: " supported. - Update to version 1.2.2. * Use a better PRNG for random sleeps. That is arc4random where available, and drand48 elsewhere. * Assorted fixes for issues found with clang analyzer: + Fix a potential NULL deference + Fix a potential division by zero + Remove dead assignments and increments * Update Doxyfile and source contrib/bogogrep.c for docs, too. * Security bugfix, CVE-2010-2494: Fix a heap corruption in base64 decoder on invalid input. Analysis and patch by Julius Plenz <plenz@xxxxxxxxxxxxxxxx>. Please see doc/bogofilter-SA-2010-01 for details. * Updated sendmail milter contrib/bogofilter-milter.pl to v1.?????? * Bump supported/minimum SQLite3 versions and warning threshold. See doc/README.sqlite for details. * Mark BerkeleyDB 4.8.26 and 5.0.21 supported. * Make t.maint more robust; ignore .ENCODING token. To fix test failures on, for instance, FreeBSD with unicode enabled. * Fix several compiler warnings "array subscript has type "char"", by casting the arguments to unsigned char. * Split error messages for ENOENT and EINVAL into new function. * Avoid divison by zero in robx computation by checking if there are at least one ham message and one spam message registered. * contrib/spamitarium.pl updated to version 0.4.0 * Updated and integrated Ted Phelps"s "Patch to prevent .ENCODING from being discarded by bogoutil -m" . - remove call to suse_update_config - Remove redundant tags/sections from specfile - Use %_smp_mflags for parallel build