USN-4899-1: SpamAssassin vulnerability
Damian Lukowski discovered that SpamAssassin incorrectly handled certain CF
files. If a user or automated system were tricked into using a specially-
crafted CF file, a remote attacker could possibly run arbitrary code.
Source: USN-4899-1: SpamAssassin vulnerability
