VuXML entry for CVE-2008-0318 (libclamav)
- From: Eygene Ryabinkin <rea-fbsd@xxxxxxxxxxx>
- Date: Wed, 13 Feb 2008 18:38:46 +0300
Good day.
Attached is the draft of the VuXML entry for the new ClamAV
vulnerability.
and ClamAV changelog, it seems that the vulnerable Petite PEFrom what I had seen and from the comments of the iDefence
module is really disabled in daily.cfg. The file has entries
'PE:0xbfff:13:23' and 'PE:0xdeff:24:25', while libclamav/dconf.h
has the following:
-----
#define PE_CONF_PETITE 0x100
-----
So, Petite compressor is disabled for f-levels 24 (0.92_sf)
and 25 (0.92). 23 is 0.92rc2 and Petite is enabled for it and
lower versions down to 13 (0.90). F-versions were extracted from
libclamav/others.c, macro variable CL_FLEVEL.
So I had marked only clamav >= 0.92 and < 0.92.1 as vulnerable.
--
Eygene
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: VuXML entry for CVE-2008-0318 (libclamav)
- From: Eygene Ryabinkin
- Re: VuXML entry for CVE-2008-0318 (libclamav)
- Prev by Date: portaudit: xfce vulnerabilities
- Next by Date: Re: portaudit: xfce vulnerabilities
- Previous by thread: portaudit: xfce vulnerabilities
- Next by thread: Re: VuXML entry for CVE-2008-0318 (libclamav)
- Index(es):
Relevant Pages
|
|
