[Bug 7293] Parsing of undecoded UTF-16 at /usr/share/perl5/Mail/SpamAssassin/HTML.pm line 260.

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7293 --- Comment #2 from d...@pavlov.com --- Hi, this was an intermittent error on a production machine some four months ago. Since then, the host has had it's dependent packages and OS upgraded numerous times, and the error is no longer showing u

[Bug 7264] Allow '(' and ')' in paths when untainting

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7264 Mark Martinec changed: What|Removed |Added Status|NEW |RESOLVED Resolution|---

[Bug 7293] Parsing of undecoded UTF-16 at /usr/share/perl5/Mail/SpamAssassin/HTML.pm line 260.

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7293 --- Comment #1 from Mark Martinec --- Which version of HTML::Parser and perl was that? Is the normalize_charset setting enabled or disabled? Can't reproduce. I don't see anything in the provided sample that could look like a BOM in UTF-16,

[Bug 7305] Wide character in syswrite at Logger/Stderr.pm line 86.

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7305 --- Comment #2 from Mark Martinec --- > I suppose the sa-update needs the same setlocale as in spamd: Decided to address the problem where it happens: --- lib/Mail/SpamAssassin/Logger/Stderr.pm (revision 1749344) +++ lib/Mail/SpamAssa

[Bug 7305] Wide character in syswrite at Logger/Stderr.pm line 86.

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7305 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |4.0.0 -- You are receiving this ma

Jenkins build is back to stable : SpamAssassin-trunk #10415

See

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 Mark Martinec changed: What|Removed |Added Status|NEW |RESOLVED Resolution|---

[Bug 7307] Base64 decoded headers have invisible characters sometimes injected at line breaks

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7307 --- Comment #4 from Mark Martinec --- > The test is also checking for sanitation of spliced multibyte characters, > which is now disabled. Need to find a better way, or disable these two > subtests... - Temporarily disabled test patterns LT

Jenkins build is still unstable: SpamAssassin-trunk #10414

See

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 --- Comment #16 from Sidney Markowitz --- (sorry bumped the trackpad and clicked Send on from comment #15) +1 SSLv3 is not just deprecated, it is a security hole that should not be used. It is the right thing to do to take it out completely

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 Sidney Markowitz changed: What|Removed |Added CC||sid...@sidney.com --- Comment #1

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 --- Comment #14 from Joe Quinn --- +1 SSL3 has been deprecated for almost exactly a year now. -- You are receiving this mail because: You are the assignee for the bug.

[Bug 7307] Base64 decoded headers have invisible characters sometimes injected at line breaks

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7307 --- Comment #3 from Mark Martinec --- > Broken the t/header_utf8.t test, investigating... The test is also checking for sanitation of spliced multibyte characters, which is now disabled. Need to find a better way, or disable these two subte

[Bug 7307] Base64 decoded headers have invisible characters sometimes injected at line breaks

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7307 Mark Martinec changed: What|Removed |Added Status|RESOLVED|REOPENED Resolution|FIXED

Jenkins build became unstable: SpamAssassin-trunk #10413

See

[Bug 7285] Make the DKIM selector a tag

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7285 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |4.0.0 Resolution|---

[Bug 7300] Parsing of address headers in spamassassin ($pms->get('From:name'))

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7300 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |3.4.2 -- You are receiving this ma

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 --- Comment #13 from AXB --- (In reply to Mark Martinec from comment #12) > Do we want this applied to the 3.4 branch too? > > I'd say yes, although it may be incompatible with some > old installations still relying on SSLv3. you have my +

[Bug 7304] spamc: string comparison in option parsing can read out of bounds

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7304 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |3.4.2 -- You are receiving this ma

[Bug 7305] Wide character in syswrite at Logger/Stderr.pm line 86.

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7305 --- Comment #1 from Mark Martinec --- I see, it probably comes from the localized date (month) format. To reproduce: LC_ALL=zh_TW.UTF-8 perl -MPOSIX -le 'print POSIX::strftime("%b %d %H:%M",localtime)' Wide character in print at -e line 1.

[Bug 7199] Bad SSL/TLS Version Default

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7199 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |3.4.2 --- Comment #12 from Mark Mar

[Bug 7307] Base64 decoded headers have invisible characters sometimes injected at line breaks

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7307 Mark Martinec changed: What|Removed |Added Target Milestone|Undefined |4.0.0 -- You are receiving this ma

[Bug 7307] Base64 decoded headers have invisible characters sometimes injected at line breaks

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7307 Mark Martinec changed: What|Removed |Added Resolution|--- |FIXED Status|NEW

Rule updates are too old - 2016-06-20

SpamAssassin version 3.3.0 has not had a rule update since 2016-05-14. SpamAssassin version 3.3.1 has not had a rule update since 2016-05-14. SpamAssassin version 3.3.2 has not had a rule update since 2016-05-14. 20160619: Spam or ham is below threshold of 150,000: http://ruleqa.spamassassin.or