*** This bug is a security vulnerability ***

Public security bug reported:

Binary package hint: clamav

References:
DSA-1497-1 (http://www.debian.org/security/2008/dsa-1497)

Quoting:
"Several vulnerabilities have been discovered in the Clam anti-virus
toolkit, which may lead to the execution of arbitrary or local denial
of service. The Common Vulnerabilities and Exposures project identifies
the following problems:

CVE-2007-6595

    It was discovered that temporary files are created insecurely,
    which may result in local denial of service by overwriting files.

CVE-2008-0318

    Silvio Cesare discovered an integer overflow in the parser for PE
    headers."

** Affects: clamav (Ubuntu)
     Importance: Undecided
         Status: New

** Visibility changed to: Public

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-6595

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-0318

-- 
[clamav] [CVE-2007-6595] [CVE-2008-0318] execution of arbitrary / DoS 
vulnerability
https://bugs.launchpad.net/bugs/195685
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to