[Pkg-clamav-devel] Bug#507624: clamav: recursive stack overflow in jpeg parsing code
michael.s.gilbert at gmail.com
Wed Dec 3 02:04:33 UTC 2008
Version: 0.90.1dfsg-4etch15 , 0.94.dfsg-1 , 0.94.dfsg.2-1
Justification: user security hole
ubuntu recently issued a security notice for clamav  that fixes a
recursive stack overflow problem in the jpeg parsing code. there is no CVE
id at this point, and the problem is already fixed upstream in clamav
version 0.94.2. further details can be found in the ubuntu bug log .
they issued fixes insanely fast on this one (within twenty-seven hours of the
initial report) -- very commendable.
thanks for working to keep debian secure.
More information about the Pkg-clamav-devel