* Security UPDATE: (LP: #191150)
libclamav/pe.c: possible integer overflow
libclamav/others.c: tempfile symlink vulnerability
Thanks to Stephen Gran <email address hidden> for the patches
* References
CVE-2008-0318
CVE-2007-6595
-- Scott Kitterman <email address hidden> Mon, 11 Feb 2008 23:03:18 -0500
This bug was fixed in the package clamav - 0.90.2-0ubuntu1.6
---------------
clamav (0.90.2-0ubuntu1.6) feisty-security; urgency=low
* Security UPDATE: (LP: #191150) others. c: tempfile symlink vulnerability
libclamav/pe.c: possible integer overflow
libclamav/
Thanks to Stephen Gran <email address hidden> for the patches
* References
CVE-2008-0318
CVE-2007-6595
-- Scott Kitterman <email address hidden> Mon, 11 Feb 2008 23:03:18 -0500