*** This bug is a security vulnerability *** Public security bug reported:
Binary package hint: clamav References: DSA-1497-1 (http://www.debian.org/security/2008/dsa-1497) Quoting: "Several vulnerabilities have been discovered in the Clam anti-virus toolkit, which may lead to the execution of arbitrary or local denial of service. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-6595 It was discovered that temporary files are created insecurely, which may result in local denial of service by overwriting files. CVE-2008-0318 Silvio Cesare discovered an integer overflow in the parser for PE headers." ** Affects: clamav (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2007-6595 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-0318 -- [clamav] [CVE-2007-6595] [CVE-2008-0318] execution of arbitrary / DoS vulnerability https://bugs.launchpad.net/bugs/195685 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
