Re: ClamAV vulnerability

To: debian-security@lists.debian.org
Subject: Re: ClamAV vulnerability
From: Steve Kemp <skx@debian.org>
Date: Mon, 26 Sep 2005 13:40:00 +0100
Message-id: <[🔎] 20050926124000.GA5557@steve.org.uk>
Reply-to: Steve Kemp <skx@debian.org>
In-reply-to: <[🔎] 20050926123627.28144.qmail@web52615.mail.yahoo.com>
References: <[🔎] 20050926123627.28144.qmail@web52615.mail.yahoo.com>

On Mon, Sep 26, 2005 at 05:36:27AM -0700, P PRABHU wrote:

> Any fix for the latest ClamAV buffer overflow in the
> file "upx.c" vulnerability. Currently .deb based
> version is 0.84-2.sarge.2 . Is this version subject to
> this vulnerability ?? If so any fix will be released

  A DSA is pending, and should be available shortly.

Steve
-- 
# The Debian Security Audit Project.
http://www.debian.org/security/audit

Reply to:

References:
- ClamAV vulnerability
  - From: P PRABHU <prabhulibra@yahoo.com>

Prev by Date: Re: ClamAV vulnerability
Next by Date: unsubscribe
Previous by thread: Re: ClamAV vulnerability
Next by thread: Re: [SECURITY] [DSA 797-2] Updated zsync i386 packages fix build error
Index(es):
- Date
- Thread