spamassassin: 3.4.2 -> 3.4.3

Two security issues have been fixed in this release: * CVE-2019-12420 for Multipart Denial of Service Vulnerability * CVE-2018-11805 for nefarious CF files can be configured to run system commands without any output or errors. https://svn.apache.org/repos/asf/spamassassin/branches/3.4/build/announcements/3.4.3.txt (cherry picked from commit 5d3607b2da4ba7bf72420fe92167800f62d0a3be)
author: Andreas Rammhold <andreas@rammhold.de> 2019-12-15 20:48:56 +0100
committer: Andreas Rammhold <andreas@rammhold.de> 2019-12-15 20:52:17 +0100
commit: bd6d9d7e1e9e2287d8eb793b9e3547f7240857fe (patch)
tree: 67529ad9b62a3151270b7a61b4531a015b3a7243
parent: linux: Add CRYPTO_AEGIS128_SIMD for aarch64 (diff)
download: nixpkgs-bd6d9d7e1e9e2287d8eb793b9e3547f7240857fe.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/pkgs/servers/mail/spamassassin/default.nix b/pkgs/servers/mail/spamassassin/default.nix
index 186f4670153f..c00814923fe0 100644
--- a/pkgs/servers/mail/spamassassin/default.nix
+++ b/pkgs/servers/mail/spamassassin/default.nix
@@ -2,11 +2,11 @@
 
 perlPackages.buildPerlPackage rec {
   pname = "SpamAssassin";
-  version = "3.4.2";
+  version = "3.4.3";
 
   src = fetchurl {
     url = "mirror://apache/spamassassin/source/Mail-${pname}-${version}.tar.bz2";
-    sha256 = "1np8h293bzg33i0xn9gj9krwgr7k6xbyf1yhxr2j2xci95d080yg";
+    sha256 = "1380cmrgjsyidnznr844c5yr9snz36dw7xchdfryi2s61vjzvf55";
   };
 
   # https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7434
author	Andreas Rammhold <andreas@rammhold.de>	2019-12-15 20:48:56 +0100
committer	Andreas Rammhold <andreas@rammhold.de>	2019-12-15 20:52:17 +0100
commit	bd6d9d7e1e9e2287d8eb793b9e3547f7240857fe (patch)
tree	67529ad9b62a3151270b7a61b4531a015b3a7243
parent	linux: Add CRYPTO_AEGIS128_SIMD for aarch64 (diff)
download	nixpkgs-bd6d9d7e1e9e2287d8eb793b9e3547f7240857fe.tar.gz