2008/9/26 Yaakov (Cygwin Ports): > Unfortunately we haven't made any progress since my last update two > weeks ago, and now there's a new vulnerability (clamav).
I'm still working on this in my spare time. 1st problem: configure:16877: result: bugged configure:16886: WARNING: ****** bzip2 libraries are affected by the CVE-2008-1372 bug configure:16888: WARNING: ****** We strongly suggest you to update to bzip2 1.0.5. configure:16890: WARNING: ****** Please do not report stability problems to the ClamAV developers! But I have libbz2-devel-1.0.5-2 And then there's a minor libtool problem I have to fix on my laptop. I'm still on a longer business trip. > clamav > problem: DoS (CVE-2008-1389/3912/3913/3914) > solution: bump to 0.94 > info: http://www.gentoo.org/security/en/glsa/glsa-200809-18.xml -- Reini Urban http://phpwiki.org/ http://murbreak.at/
