[Bug 218915] [NEW] Please sync clamav 0.92.1~dfsg2-1 (universe) from Debian unstable (main).
Scott Kitterman
ubuntu at kitterman.com
Thu Apr 17 23:04:20 BST 2008
Public bug reported:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/clamav
status confirmed
importance wishlist
subscribe ubuntu-archive
Please sync clamav 0.92.1~dfsg2-1 (universe) from Debian unstable
(main).
motu-release ack for this security upload.
Changelog since current hardy version 0.92.1~dfsg2-0.1:
clamav (0.92.1~dfsg2-1) unstable; urgency=high
* libclamav/pe.c: possible integer overflow in wwpack
* [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
* [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
* libclamav/unarj.c: DoS in unarj
-- Stephen Gran <sgran at debian.org> Tue, 15 Apr 2008 17:48:43 +0100
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)
iD8DBQFIB8jpHajaM93NaGoRAs/YAJ9EgpzeJHMToEy05NstLLaJSEk5dgCfcr3g
ZD1N8DV2AUs5BBxq2FEQgzM=
=1j6u
-----END PGP SIGNATURE-----
** Affects: clamav (Ubuntu)
Importance: Wishlist
Status: Confirmed
--
Please sync clamav 0.92.1~dfsg2-1 (universe) from Debian unstable (main).
https://bugs.launchpad.net/bugs/218915
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list