Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution

To: debian-volatile@lists.debian.org, debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
From: "Jim Popovitch" <yahoo@jimpop.com>
Date: Tue, 9 Dec 2008 23:05:28 -0500
Message-id: <[🔎] 7ff145960812092005v51ccaf4dyafff3076f2a82403@mail.gmail.com>
In-reply-to: <[🔎] 493F02E6020000AD00003801@mailserver.mapperlithography.com>
References: <[🔎] 493F02E6020000AD00003801@mailserver.mapperlithography.com>

On Tue, Dec 9, 2008 at 17:44, Mapper ict department
<ict@mapperlithography.com> wrote:
> We have Debian Etch with the volatile clamav installed. This is
> the version:
>
> 0.94.dfsg.1-1~volatile1
>
> That is the one affected if i am not mistaking.
>
> We have the volatile archive in the apt-get sources list:
>
> http://volatile.debian.org/debian-volatile etch/volatile main contrib non-free
>
> But the fix is nor queued nor downloaded.

I am seeing the same thing.  The fix is on volatile.d.o as
clamav_0.94.dfsg.2-1~volatile1, but apt-get upgrade is not recognizing
it.  I don't see it in the Releases file either.

-Jim P.

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
  - From: Dominic Hargreaves <dom@earth.li>

References:
- Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
  - From: "Mapper ict department" <ict@mapperlithography.com>

Prev by Date: Re: I need to see open connections this moment - With Iptables i can only see logs
Next by Date: Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
Previous by thread: Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
Next by thread: Re: [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
Index(es):
- Date
- Thread