[Secure-testing-commits] r2099 - data/DTSA/advs
Neil McGovern
neilm at costa.debian.org
Thu Sep 22 19:32:07 UTC 2005
Author: neilm
Date: 2005-09-22 19:32:07 +0000 (Thu, 22 Sep 2005)
New Revision: 2099
Added:
data/DTSA/advs/19-clamav.adv
Log:
New clam vuns. Not much info in teh DTSA, as the CVEs are still reserved.
Added: data/DTSA/advs/19-clamav.adv
===================================================================
--- data/DTSA/advs/19-clamav.adv 2005-09-22 18:09:56 UTC (rev 2098)
+++ data/DTSA/advs/19-clamav.adv 2005-09-22 19:32:07 UTC (rev 2099)
@@ -0,0 +1,20 @@
+source: clamav
+date: September 22nd, 2005
+author: Neil McGovern
+vuln-type: buffer overflow and infinate loop problems
+problem-scope: remote
+debian-specific: no
+cve: CAN-2005-2919 CAN-2005-2920
+testing-fix: 0.86.2-4etch2
+sid-fix: 0.87-1
+upgrade: apt-get upgrade
+
+Multiple security holes were found in clamav:
+
+CAN-2005-2919
+
+ A possible infinate loop has been discovered in libclamav/fsg.c
+
+CAN-2005-2920
+
+ A possible buffer overflow has been found in libclamav/upx.c
More information about the Secure-testing-commits
mailing list