[ubuntu/dapper-security] clamav (delayed), clamav 0.95.3+dfsg-1ubuntu0.09.04~dapper4.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Sep 20 14:11:56 BST 2010
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper4.1) dapper-security; urgency=low
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
keeps us from overflowing but leaves enough room for the 900k maximum
value of the RUNA/RUNB encoding
- patch based on upstream bzip2
- CVE-2010-0405
Date: Mon, 13 Sep 2010 14:45:44 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/dapper/+source/clamav/0.95.3+dfsg-1ubuntu0.09.04~dapper4.1
-------------- next part --------------
Format: 1.7
Date: Mon, 13 Sep 2010 14:45:44 -0500
Source: clamav
Binary: clamav libclamav-dev clamav-dbg clamav-milter clamav-base clamav-freshclam clamav-testfiles clamav-daemon clamav-docs libclamav6
Architecture: source
Version: 0.95.3+dfsg-1ubuntu0.09.04~dapper4.1
Distribution: dapper-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
clamav - anti-virus utility for Unix - command-line interface
clamav-base - anti-virus utility for Unix - base package
clamav-daemon - anti-virus utility for Unix - scanner daemon
clamav-dbg - debug symbols for ClamAV
clamav-docs - anti-virus utility for Unix - documentation
clamav-freshclam - anti-virus utility for Unix - virus database update utility
clamav-milter - anti-virus utility for Unix - sendmail integration
clamav-testfiles - anti-virus utility for Unix - test files
libclamav-dev - anti-virus utility for Unix - development files
libclamav6 - anti-virus utility for Unix - library
Changes:
clamav (0.95.3+dfsg-1ubuntu0.09.04~dapper4.1) dapper-security; urgency=low
.
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
keeps us from overflowing but leaves enough room for the 900k maximum
value of the RUNA/RUNB encoding
- patch based on upstream bzip2
- CVE-2010-0405
Files:
25717d52fe315af550f49f9906f9611f 1120 utils optional clamav_0.95.3+dfsg-1ubuntu0.09.04~dapper4.1.dsc
a7b8fcd10cde67395917412c4b295563 267682 utils optional clamav_0.95.3+dfsg-1ubuntu0.09.04~dapper4.1.diff.gz
Original-Maintainer: ClamAV Team <pkg-clamav-devel at lists.alioth.debian.org>
More information about the dapper-changes
mailing list