[Bug 643682] [NEW] DoS due to PDF parsing issues
Scott Kitterman
ubuntu at kitterman.com
Mon Sep 20 17:20:28 BST 2010
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: clamav
A new clamav release is out with a fix for a security issue in their PDF
parser.
http://git.clamav.net/gitweb?p=clamav-devel.git;a=commitdiff;h=dc5143b4669ae39c79c9af50d569c28c798f33da;hp=4dccd075f99592a3aee59fff69c3851da4dd6efe appears to be the PDF change.
j
Impact of the PDF change is DoS. Reading an appropriate PDF would cause a crash.
** Affects: clamav (Ubuntu)
Importance: Medium
Status: Triaged
** Affects: clamav (Ubuntu Lucid)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Maverick)
Importance: Medium
Status: Triaged
** Affects: clamav (Ubuntu Dapper)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Hardy)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Jaunty)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Karmic)
Importance: Undecided
Status: New
** Visibility changed to: Public
** Changed in: clamav (Ubuntu)
Importance: Undecided => Medium
** Changed in: clamav (Ubuntu)
Status: New => Triaged
** Changed in: clamav (Ubuntu)
Milestone: None => ubuntu-10.10
** Also affects: clamav (Ubuntu Hardy)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Maverick)
Importance: Medium
Status: Triaged
** Also affects: clamav (Ubuntu Karmic)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Jaunty)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Dapper)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Lucid)
Importance: Undecided
Status: New
--
DoS due to PDF parsing issues
https://bugs.launchpad.net/bugs/643682
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to clamav in ubuntu.
More information about the Ubuntu-server-bugs
mailing list