~ubuntu-branches/ubuntu/jaunty/clamav/jaunty-security

Viewing all changes in revision 67.

  • Committer: Bazaar Package Importer
  • Author(s): Jamie Strandboge
  • Date: 2010-09-13 14:35:56 UTC
  • Revision ID: james.westby@ubuntu.com-20100913143556-ukxoym2woiwb1zf9
Tags: 0.95.3+dfsg-1ubuntu0.09.04.3
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
  - libclamav/nsis/bzlib.c: return error if N is larger than 2*1024^2 which
    keeps us from overflowing but leaves enough room for the 900k maximum
    value of the RUNA/RUNB encoding
  - patch based on upstream bzip2
  - CVE-2010-0405

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: