[VUA 14-1] Updated clamav packages fixes security flaw
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ---------------------------------------------------------------------------
Debian Volatile Update Announcement VUA 14-1 http://volatile.debian.net
debian-volatile@lists.debian.org Andreas Barth
May 1st, 2006
- ---------------------------------------------------------------------------
Package : clamav
Version : 0.88.2-0volatile1
Importance : medium
CVE IDs : CVE-2006-1989
The following security flaw was found and fixed in clamav:
CVE-2006-1989
freshclam/manager.c: fix possible buffer overflow
Reported by Ulf Harnhammar and an anonymous researcher in Germany.
See http://www.clamav.net/security/0.88.2.html for details.
For sarge, an updated clamav package is available in sarge/volatile
as version 0.88.2-0volatile1. We recommend that you update your system.
Upgrade Instructions
- --------------------
You can get the updated packages at
http://volatile.debian.net/debian-volatile/pool/volatile/main/c/clamav/
and install them with dpkg, or add
deb http://volatile.debian.net/debian-volatile sarge/volatile main
deb-src http://volatile.debian.net/debian-volatile sarge/volatile main
to your /etc/apt/sources.list. You can also use any of our mirrors.
Please see http://www.debian.org/devel/debian-volatile/volatile-mirrors for
the full list of mirrors. The archive signing key can be downloaded from
http://volatile.debian.net/ziyi-sarge.asc
For further information about debian-volatile, please refer to
http://volatile.debian.net/ and http://www.debian.org/devel/debian-volatile/.
If there are any issues, please don't hesitate to get in touch with the
volatile team.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFEVgGEmdOZoew2oYURAmcqAJ4zwgQh+3QnGBDjPaizlncIWk0nZgCdFo8+
YcAGI3h0SOhEcYMFOAoTOO4=
=Q7yx
-----END PGP SIGNATURE-----
Reply to: