Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 15 Jun 2008 21:21:30 +1000
From: Steffen Joeris <steffen.joeris@...lelinux.de>
To: oss-security@...ts.openwall.com
Subject: CVE id request: Clamav

Hi

The upstream changelog says:
* libclamav/petite.c: fix possible invalid memory access (bb#1000)
				Reported by Damian Put

This seems to read beyond the end of an array and could potentially lead to a 
DoS.

Upstream bugreport:
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000


Could I get a CVE id for this?

Cheers
Steffen

Download attachment "signature.asc " of type "application/pgp-signature" (198 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.