[Pkg-clamav-devel] Etch backported security fixes

Moritz Muehlenhoff jmm at inutil.org
Tue Nov 11 23:26:36 UTC 2008


On Tue, Nov 11, 2008 at 11:02:44PM +0100, Michael Tautschnig wrote:
> > This one time, at band camp, aCaB said:
> > > Hi,
> > > Out of two security fixes in 0.94.1 only one applies (off by one in
> > > get_unicode_name) the other one affects the screnc handler which has
> > > been pretty much rewritten since 0.90.1.
> > > 
> > > Patch attached.
> > 
> > That seems pretty straight forward, really :)  Copying the security team
> > to get some feedback.
> > 
> > Security:
> > This is 505134.  No CVE as yet, but from the bugtraq message it seems
> > pretty clear it will have one.
> 
> Attached please find the complete changeset to fix this issue. I'm just about
> to build the package, which could get uploaded to security-master whenever you
> like.



More information about the Pkg-clamav-devel mailing list