Nico Golde wrote: > the following CVE (Common Vulnerabilities & Exposures) id was > published for clamav. > > > CVE-2008-1833[0]: > | Heap-based buffer overflow in libclamav in ClamAV 0.92.1 allows remote > | attackers to execute arbitrary code via a crafted WWPack compressed PE > | binary. > > If you fix the vulnerability please also make sure to include the > CVE id in your changelog entry. > > For further information see: > > [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1833 > http://security-tracker.debian.net/tracker/CVE-2008-1833
Already fixed in etch and unstable (it's the issue referenced as not yet having a CVE ID in the DSA). Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]