>> there is currently an unpatched vulnerability in clamav (stable and >> testing) which has yet to receive a cve id. the bug has been >> submitted to the debian bts [1], but it has not yet been entered into >> the security tracker. please update the tracker to include this >> issue. > > It's already been there for a couple of hours. It's CVE-2008-5314. sweet. thanks for getting the fix for this one released so quickly!