Re: ClamAV vulnerability

To: debian-security@lists.debian.org
Subject: Re: ClamAV vulnerability
From: Willi Mann <willi@wm1.at>
Date: Mon, 26 Sep 2005 15:03:04 +0200
Message-id: <[🔎] dh8rgo$pb4$1@sea.gmane.org>
In-reply-to: <[🔎] 20050926123627.28144.qmail@web52615.mail.yahoo.com>
References: <[🔎] 20050926123627.28144.qmail@web52615.mail.yahoo.com>

P PRABHU schrieb:

Hai

Any fix for the latest ClamAV buffer overflow in the
file "upx.c" vulnerability. Currently .deb based
version is 0.84-2.sarge.2 . Is this version subject to

this vulnerability ??


Yes. See:
http://spohr.debian.org/~joeyh/stable-security.html

If so any fix will be released
??


Only someone of the security team can tell you that.

I recommend to use the version from volatile, because for full virusprotection you need the latest version of clamav anyway.


http://volatile.debian.net/

Willi

Reply to:

References:
- ClamAV vulnerability
  - From: P PRABHU <prabhulibra@yahoo.com>

Prev by Date: ClamAV vulnerability
Next by Date: Re: ClamAV vulnerability
Previous by thread: ClamAV vulnerability
Next by thread: Re: ClamAV vulnerability
Index(es):
- Date
- Thread