Nico Golde wrote:
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for clamav.
>
>
> CVE-2008-1833[0]:
> | Heap-based buffer overflow in libclamav in ClamAV 0.92.1 allows remote
> | attackers to execute arbitrary code via a crafted WWPack compressed PE
> | binary.
>
> If you fix the vulnerability please also make sure to include the
> CVE id in your changelog entry.
>
> For further information see:
>
> [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1833
> http://security-tracker.debian.net/tracker/CVE-2008-1833
Already fixed in etch and unstable (it's the issue referenced as not
yet having a CVE ID in the DSA).
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
