Test ID:	1.3.6.1.4.1.25623.1.0.68226
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-980-1 (bogofilter)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to bogofilter announced via advisory USN-980-1. Details follow: Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service. Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: bogofilter-bdb 1.1.5-2ubuntu5.1 bogofilter-sqlite 1.1.5-2ubuntu5.1 Ubuntu 9.04: bogofilter-bdb 1.1.7-1ubuntu1.1 bogofilter-sqlite 1.1.7-1ubuntu1.1 Ubuntu 9.10: bogofilter-bdb 1.2.0-3ubuntu1.1 bogofilter-sqlite 1.2.0-3ubuntu1.1 Ubuntu 10.04 LTS: bogofilter-bdb 1.2.1-0ubuntu1.1 bogofilter-sqlite 1.2.1-0ubuntu1.1 In general, a standard system update will make all the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-980-1 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2494 40427 http://secunia.com/advisories/40427 41239 http://secunia.com/advisories/41239 41339 http://www.securityfocus.com/bid/41339 66002 http://www.osvdb.org/66002 ADV-2010-2233 http://www.vupen.com/english/advisories/2010/2233 FEDORA-2010-13139 http://lists.fedoraproject.org/pipermail/package-announce/2010-August/046558.html FEDORA-2010-13154 http://lists.fedoraproject.org/pipermail/package-announce/2010-August/046590.html SUSE-SR:2010:014 http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html USN-980-1 http://www.ubuntu.com/usn/USN-980-1 [oss-security] 20100705 Re: Request CVE ID for bogofilter base64 decoder http://marc.info/?l=oss-security&m=127831760712436&w=2 [oss-security] 20100705 Request CVE ID for bogofilter base64 decoder http://marc.info/?l=oss-security&m=127814747231102&w=2 [oss-security] 20100706 REPOST: CVE request for bogofilter http://marc.info/?l=oss-security&m=127840569013531&w=2 [oss-security] 20100706 Re: Request CVE ID for bogofilter base64 decoder http://marc.info/?l=oss-security&m=127844323105405&w=2 http://bogofilter.sourceforge.net/security/bogofilter-SA-2010-01 http://bogofilter.svn.sourceforge.net/viewvc/bogofilter/trunk/bogofilter/doc/bogofilter-SA-2010-01?revision=6909&pathrev=6909 http://bogofilter.svn.sourceforge.net/viewvc/bogofilter/trunk/bogofilter/src/base64.c?view=patch&r1=6906&r2=6903 https://bugzilla.redhat.com/show_bug.cgi?id=611551 openSUSE-SU-2012:1648 http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00015.html openSUSE-SU-2012:1650 http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00016.html openSUSE-SU-2013:0166 http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00021.html
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.