[Bug 214925] New: Out out of range error in SpamAssassin
https://bugzilla.novell.com/show_bug.cgi?id=214925 Summary: Out out of range error in SpamAssassin Product: SUSE Linux 10.1 Version: Final Platform: PC OS/Version: SuSE Linux 10.1 Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: robin.listas@telefonica.net QAContact: qa@suse.de I just saw this message in my warn file; I copy the full excerpt: (watch for line wrap, I can't control it in this input box) Oct 25 12:31:46 nimrodel spamd[479]: spamd: processing message <000901c6def8$b3c9f290$00c9aa58@vncypixlaqh> for cer:500 Oct 25 12:31:46 nimrodel spamd[479]: Second '70' out of range 0..59 at /usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssass in/Util.pm line 429 Oct 25 12:31:46 nimrodel spamd[479]: Second '70' out of range 0..59 at /usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssass in/Util.pm line 429 Oct 25 12:31:46 nimrodel spamd[479]: Second '70' out of range 0..59 at /usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssass in/Util.pm line 429 Oct 25 12:31:47 nimrodel spamd[479]: spamd: identified spam (19.6/5.0) for cer:500 in 0.8 seconds, 28128 bytes. Oct 25 12:31:47 nimrodel spamd[479]: spamd: result: Y 19 - BAYES_99,DNS_FROM_RFC_POST,EXTRA_MPART_TYPE,HTML_90_100,HTML _IMAGE_ONLY_08,HTML_MESSAGE,INVALID_DATE,MIME_HTML_MOSTLY,MSGID_OUTLOOK_INVALID,RCVD_IN_XBL,UNPARSEABLE_RELAY scantime= 0.8,size=28128,user=cer,uid=500,required_score=5.0,rhost=localhost,raddr=127.0.0.1,rport=22884,mid=<000901c6def8$b3c9f2 90$00c9aa58@vncypixlaqh>,bayes=1,autolearn=disabled The message that triggered this is obviously spam, and I have saved it in a mbox file (bugsa_mailbox) that I can attach to this report -- hold on, I can't, I don't see a button for that. Please request the file from me when you can. I'm using stock spamassassin-3.1.3-3.2 in SuSE 10.1 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214925 ------- Comment #1 from robin.listas@telefonica.net 2006-10-25 06:48 MST ------- Created an attachment (id=102569) --> (https://bugzilla.novell.com/attachment.cgi?id=102569&action=view) Contains the full email that triggered the error in spamassassin bugsa_mailbox.gz is a gzipped mbox from Pine containing the email that triggered the range error in SA, as I don't have any idea of what exactly triggered it. It is the second email in the mbox, obviously. I send it as mbox as it is the only way I found to save a file containing the intact email including the png image (payload) of the spam, using Pine. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214925 lkundrak@redhat.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |lkundrak@redhat.com ------- Comment #2 from lkundrak@redhat.com 2006-10-25 10:24 MST ------- The message contains this line: Date: Sat, 23 Sep 2006 13:11:70 +0200 What is obviously wrong is that the number of seconds is incorrect. The code that causes the warning is this: my $time; eval { # could croak $time = timegm($ss, $mm, $hh, $dd, $mmm-1, $yyyy); }; Only thing that is wrong is that the warning is unneeded and useless. One solution might be to add additional check there. Additionally it would be good to add a spamassassin test to match messages like this and raise a penalty score. This is obviously not a security bug. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214925 ------- Comment #3 from robin.listas@telefonica.net 2006-10-25 12:33 MST ------- Sorry if it is not a security bug. I thought it might be because I consider spamassassin part of the security setup, and because it was logged in the /var/log/warn file. Had it gone to mail.debug I might have said nothing. Perhaps Novell could consider adding items to the component list in bugzilla like «mail and virii filtering». -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214925 varkoly@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |WORKSFORME ------- Comment #4 from varkoly@novell.com 2006-12-22 02:20 MST ------- The subroutine receive_date in Mail::SpamAssassin::Util finds nearly a suitable date. In this modul is no tokenize avaiable. We will observe and discuss if it's worth it to enhance receive_date to report bad date formats. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com