*** This bug is a security vulnerability *** Public security bug reported:
Binary package hint: clamav CVE-2008-3215 description: "libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists because of an incomplete fix for CVE-2008-2713." http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3215 ** Affects: clamav (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-3215 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-2713 -- [CVE-2008-3215] ClamAV Petite DoS not fixed until 0.93.3 https://bugs.launchpad.net/bugs/253782 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
