Oval Definition:oval:org.mitre.oval:def:7444
Revision Date:2014-06-23Version:17
Title:DSA-1497 clamav -- several vulnerabilities
Description:Several vulnerabilities have been discovered in the Clam anti-virus toolkit, which may lead to the execution of arbitrary or local denial of service. The Common Vulnerabilities and Exposures project identifies the following problems: It was discovered that temporary files are created insecurely, which may result in local denial of service by overwriting files. Silvio Cesare discovered an integer overflow in the parser for PE headers. The version of clamav in the old stable distribution (sarge) is no longer supported with security updates.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-6595
CVE-2008-0318
DSA-1497
Platform(s):Debian GNU/Linux 4.0
Product(s):clamav
Definition Synopsis
  • Debian GNU/Linux 4.0 is installed.
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • clamav-docs is earlier than 0.90.1dfsg-3etch10
  • OR clamav-testfiles is earlier than 0.90.1dfsg-3etch10
  • OR clamav-base is earlier than 0.90.1dfsg-3etch10
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • libclamav-dev is earlier than 0.90.1dfsg-3etch10
  • OR clamav is earlier than 0.90.1dfsg-3etch10
  • OR clamav-dbg is earlier than 0.90.1dfsg-3etch10
  • OR libclamav2 is earlier than 0.90.1dfsg-3etch10
  • OR clamav-daemon is earlier than 0.90.1dfsg-3etch10
  • OR clamav-milter is earlier than 0.90.1dfsg-3etch10
  • OR clamav-freshclam is earlier than 0.90.1dfsg-3etch10
    • BACK