[CVE-2008-3215] ClamAV Petite DoS not fixed until 0.93.3
Bug #253782 reported by
Till Ulen
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
clamav (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: clamav
CVE-2008-3215 description:
"libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists because of an incomplete fix for CVE-2008-2713."
To post a comment you must log in.
Already fixed. Please provide evidence not involving version numbers if you believe otherwise.