[Bug 354190] [NEW] Security fixes from clamav 0.95 need backport
Scott Kitterman
ubuntu at kitterman.com
Thu Apr 2 23:22:41 UTC 2009
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: clamav
Clamav 0.95 included patches for two security issues:
*libclamav/pe.c: division by zero with --detect-broken (bb#1335) (Denial of
service)
* libclamav/untar.c: infloop in tar.c (bb#1462) (Denial of Service)
Fixed in Jaunty by 0.95. Open for other Ubuntu releases.
** Affects: clamav (Ubuntu)
Importance: Undecided
Status: Fix Released
** Affects: clamav (Ubuntu Dapper)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Gutsy)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Hardy)
Importance: Undecided
Status: New
** Affects: clamav (Ubuntu Intrepid)
Importance: Medium
Assignee: Scott Kitterman (kitterman)
Status: In Progress
** Visibility changed to: Public
** Changed in: clamav (Ubuntu)
Status: New => Fix Released
** Also affects: clamav (Ubuntu Dapper)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Gutsy)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Hardy)
Importance: Undecided
Status: New
** Also affects: clamav (Ubuntu Intrepid)
Importance: Undecided
Status: New
** Changed in: clamav (Ubuntu Intrepid)
Importance: Undecided => Medium
** Changed in: clamav (Ubuntu Intrepid)
Status: New => In Progress
** Changed in: clamav (Ubuntu Intrepid)
Assignee: (unassigned) => Scott Kitterman (kitterman)
--
Security fixes from clamav 0.95 need backport
https://bugs.launchpad.net/bugs/354190
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list