1
Candidate: CVE-2010-1640
2
PublicDateAtUSN: 2010-05-27
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1640
7
Off-by-one error in the parseicon function in libclamav/pe_icons.c in
8
ClamAV 0.96 allows remote attackers to cause a denial of service (crash)
9
via a crafted PE icon that triggers an out-of-bounds read, related to
10
improper rounding during scaling.
13
jdstrand> patched as CVE-2010-2077 in USN-945-1
14
jdstrand> does not affect 0.95.3 and lower
21
upstream_clamav: released (0.96.1)
22
dapper_clamav: not-affected (code-not-present)
23
hardy_clamav: not-affected (code-not-present)
24
jaunty_clamav: not-affected (code-not-present)
25
karmic_clamav: not-affected (code-not-present)
26
lucid_clamav: released (0.96.1+dfsg-0ubuntu0.10.04.1)
27
devel_clamav: released (0.96.1+dfsg-0ubuntu2)