[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1232-1] New clamav packages fix denial of service



This one time, at band camp, Milan P. Stanic said:
> On Sat, Dec 09, 2006 at 03:43:33PM +0100, Moritz Muehlenhoff wrote:
> > Package        : clamav
> > Vulnerability  : missing sanity checks
> > Problem-Type   : remote
> > Debian-specific: no
> > CVE ID         : CVE-2006-5874
> [...]
> > For the upcoming stable distribution (etch) this problem has been
> > fixed in version 0.86-1.
>                      ^^ 
> > For the unstable distribution (sid) this problem has been fixed in
> > version 0.86-1.
>             ^^
> Clamav in testing and unstable is version 0.88.6

Yes, and the problem was fixed in version 0.86.  That was the point of
that statement.
-- 
 -----------------------------------------------------------------
|   ,''`.                                            Stephen Gran |
|  : :' :                                        sgran@debian.org |
|  `. `'                        Debian user, admin, and developer |
|    `-                                     http://www.debian.org |
 -----------------------------------------------------------------

Attachment: signature.asc
Description: Digital signature


Reply to: