https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7443
Bug ID: 7443
Summary: HTML_FONT_LOW_CONTRAST not being checked for td/tr/th
if style attribute exists for these elements
Product: Spamassassin
Version: 3.4.1
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: Rules
Assignee: [email protected]
Reporter: [email protected]
Target Milestone: Undefined
Created attachment 5453
--> https://bz.apache.org/SpamAssassin/attachment.cgi?id=5453&action=edit
patch -p0 patch.txt
Enclosed is a tiny patch to HTML.pm
It is to accommodate changes in the HTML standard as it relates to inline
style.
Specifically, inline style was not being parsed because the only allowed
attribute for td/tr/th were bgcolor. The standard allows for style. Without
this, rules like the HTML_FONT_LOW_CONTRAST were not being checked. Saw some
spam today getting around that check.
Spam contained the following pattern but didn't trigger HTML_FONT_LOW_CONTRAST
<table align="center" border="0" cellpadding="10" cellspacing="0" width="100%">
<tbody>
<tr>
<td align="center" style="font-size: 10.17px;
font-family:Copperplate,'Copperplate Gothic Light',fantasy;
background-color:#737373; color:#737373;">elected on just 777 votes from an
electoral
...
...
...
</tr>
</tbody>
</table>
--
You are receiving this mail because:
You are the assignee for the bug.
