|
Family: Debian Local Security Checks --> Category: infos
[DSA1263] DSA-1263-1 clamav Vulnerability Scan
Vulnerability Scan Summary DSA-1263-1 clamav
Detailed Explanation for this Vulnerability Test
Several remote vulnerabilities have been discovered in in the Clam
anti-virus toolkit, which may lead to denial of service. The Common
Vulnerabilities and Exposures project identifies the following problems:
It was discovered that malformed CAB archives may exhaust file
descriptors, which allows denial of service.
It was discovered that a directory traversal vulnerability in the MIME
header parser may lead to denial of service.
For the stable distribution (sarge) these problems have been fixed in
version 0.84-2.sarge.15.
For the upcoming stable distribution (etch) these problems have been fixed
in version 0.88.7-2.
For the unstable distribution (sid) these problems have been fixed in
version 0.90-1.
We recommend that you upgrade your clamav packages.
Solution : http://www.debian.org/security/2007/dsa-1263
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|